Evoq Finance contract attacked, resulting in a loss of approximately $420,000

Chaincatcher2025/09/10 16:06

ChainCatcher news, according to monitoring by GoPlus Security, the smart contract of Evoq Finance on BNB Chain was attacked. The attacker stole the owner's account, transferred ownership to themselves, and then upgraded the contract to a malicious version, stealing approximately $420,000 from the protocol and user approvals.

Users should immediately revoke token approvals for contract 0xF9C74A65B04C73B911879DB0131616C556A626bE to prevent further losses. The project team should pay attention to using multi-signature and regular key rotation to protect high-privilege accounts. Attack overview: The attacker appears to have stolen the private key of the owner's account (0xF08d1c) and used transferOwnership to transfer ownership to their address (0x7b416F). They then upgraded the proxy contract, draining funds from the contract and approved user accounts.

Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.

PoolX: Earn new token airdrops

Lock your assets and earn 10%+ APR

Lock now!

Evoq Finance contract attacked, resulting in a loss of approximately $420,000

You may also like

Trending news

Crypto prices