Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Reproducible Foundry test fork from SunWeb3Sec/DeFiHackLabs. Clone the repo, run forge test against the file path above, and replay the exploit against a mainnet fork at the historical block. Use for reproduction only — not for live targets.
On November 7, TheStandard.io was exploited for ~$290k. The key vulnerability here was the low liquidity in the PAXG pool, which the attacker exploited to manipulate the market. On November 9, 243k $EUROs has been returned to the protocol from the attacker which will be burned in due process. Attack method (per SlowMist): Liquidity Exploit. Reported loss: $ 290,000.
- chain
- —
- protocol
- TheStandard.io
- bug_class
- unknown
- date_occurred
- 2023-11-07
- loss_usd
- $290,000
- source_id
- sm:thestandard-io::2023-11-07