THELOGICALINDIAN - CEO said hackers compromised the Metamask browser addendum by hacking into his computer
EasyFi Network, a Layer-2 DeFi activity on Polygon Network, appear that an alien hacker blanket tens of millions of dollars account of funds from its official wallet.
Admin MetaMask Wallet Compromised
Founder and CEO Ankitt Gaur accepted in a blog that the hacker compromised clandestine keys to EasyFi’s admin MetaMask annual about 10:40 AM UTC on Apr. 19.
“Mnemonic phrase/admin keys were compromised from the MetaMask beneath a planned alien advance which was acclimated to cesspool clamminess from the protocol,” Gaur wrote.
Using the compromised clandestine key, the hacker drained $6 actor from EasyFi’s stablecoin clamminess pools. They additionally blanket 2.98 actor EASY tokens account $75 actor at the time of the hack.
CEO Gaur added explained hackers compromised the Metamask browser addendum by hacking into his computer.
“My computer was compromised, and Metamask was adapted from the disk.”
Funds drained from clamminess pools were beatific to Ren Bridge on Ethereum, adapted into 123 Bitcoin, and beatific to this Bitcoin address. Meanwhile, the baseborn EasyFi tokens sit at the hacker’s Ethereum address.
Commentators on amusing media criticized EasyFi for application a hot MetaMask wallet for managing its acute contract.
https://twitter.com/ChrisBlec/status/1384327450084118529
This adventure is not the aboriginal time a noteworthy DeFi activity was sabotaged application MetaMask wallet.
In December 2020, a affected MetaMask popup was acclimated to ambush the architect of Nexus Mutual into appointment added than 8 actor to a hacker. In both cases, the MetaMask web addendum was adapted through the machine’s disk.
EasyFi has requested users not to collaborate with its badge affairs and abjure all clamminess in assorted DEXes.
The drudge afflicted the amount of EASY tokens, with amount aerobatics from ~$25 to $16.82 at the time of writing, as per CoinGecko.
Update: EasyFi Network has conducted a adamantine fork, and created a new token contract in an accomplishment to atone users afflicted by the hack. The aggregation has additionally afflicted the ticker attribute of tokens from EASY to EZ.
