Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Encrypted wallet ZenGo researcher Alex Manuskin revealed that UniCats, a so-called "yield farming platform" based on the Ethereum network, is suspected of stealing at least $200,000 in encryption from several users, including the governance token UNI of the decentralized financial platform Uniswap assets. A backdoor in the smart contract allows UniCats to retain control of its user tokens even if these tokens have been withdrawn from the user pool. Previous attacks against Bancor also used similar vulnerabilities. Attack method (per SlowMist): Scam. Reported loss: $ 200,000.
- chain
- ethereum
- protocol
- UniCats
- bug_class
- rug
- date_occurred
- 2020-10-10
- loss_usd
- $200,000
- source_id
- sm:unicats::2020-10-10