Monoswap, a decentralized exchange platform, has been breached by hackers, leading to significant liquidity theft. This document details the breach, its impact, and the response from the Monoswap team.
Points
- Monoswap platform was breached by hackers, resulting in significant liquidity theft.
- A phishing application installed by a developer led to the breach.
- Monoswap advises users to withdraw funds and avoid adding liquidity.
- Investigation is ongoing, and the team is working on resolving the issue.
- Potential involvement of the Lazarus Group, known for previous cyber attacks.
Monoswap, a decentralized exchange platform, has been breached by hackers, resulting in the theft of significant liquidity. The Monoswap team has advised users to withdraw their funds immediately and avoid staking or adding new liquidity until the issue is resolved.
Details of the Breach
The breach occurred when one of Monoswap’s developers inadvertently installed a phishing application during a meeting with individuals posing as venture capitalists. The attackers loaded a botnet on the developer’s office computer, which had access to all wallets and contracts related to Monoswap. This led to the withdrawal of most of the staked liquidity, causing significant damage to the protocol.
Impact on Users
Monoswap users have been directly affected by this breach, with the platform urging immediate withdrawal of funds to prevent further losses. The team has emphasized the importance of not adding liquidity or staking in their farming pools until further notice.
Response and Investigation
Monoswap is currently investigating the breach and working on steps to resolve the issue. The involvement of the Lazarus Group, a notorious hacking group known for previous cyber attacks, is suspected in this incident. The team is focused on securing the platform and preventing future breaches.
Official Statement
“MonoSwap was attacked. Do not add liquidity or stake in our farming pools at this time.
If you have any staking positions, please withdraw immediately to prevent fund loss.
Yesterday, one of our developers installed a phishing application to attend a meeting with scammers posing as VCs. The attackers loaded a botnet on the office computer, which had access to all wallets and contracts related to MonoSwap. The hackers then withdrew most of the staked liquidity, damaging the protocol.
We are currently investigating the attack and will announce our next steps soon. We were working with VCs to build a better future for MonoSwap. Unfortunately, this incident occurred, and we are doing our best to resolve it.”
Conclusion
The breach of Monoswap highlights the critical importance of security in the cryptocurrency space. Users should follow the Monoswap team’s advice to withdraw funds and avoid adding liquidity until the platform is secured and the investigation is complete.
解説
- Monoswap, a decentralized exchange, has been breached, leading to significant liquidity theft.
- The breach occurred due to a phishing application installed by a developer during a meeting with scammers.
- Users are advised to withdraw their funds immediately and avoid adding liquidity or staking.
- The Monoswap team is investigating the breach and working on resolving the issue, with potential involvement of the Lazarus Group.
- The incident underscores the importance of robust security measures and vigilance in the cryptocurrency industry to prevent such breaches.