Rewards Hub Jill Gunter, co-founder of Espresso, has reported a theft of $30,000 in USDC due to a vulnerability in a legacy Thirdweb smart contract. The breach, which occurred on December 9, involved funds being moved through Railgun and was linked to a previously used Thirdweb bridge contract. Thirdweb has confirmed the flaw, which allowed unlimited token approvals, and has since disabled the affected contract.
The vulnerability is associated with a 2023 open-source library flaw that has impacted over 500 token contracts and has been exploited at least 25 times, according to ScamSniffer. This incident underscores the persistent security challenges facing decentralized finance (DeFi) infrastructure.
Espresso Co-Founder Reports $30K Theft via Thirdweb Contract Flaw
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.