Hack Alert - Dolomite Crypto Exchange Exploited For ~$1.8 Million
Quick Summary
Dolomite Exchange was exploited today (March 20th, 2024), resulting in a loss of approximately $1.8 million.
The hacker's address is identified as 0x52522d35725836d48e12e64731fa170bcd9423bf.
Multiple transfers and transactions from the hackers address (0x52522D35725836D48E12e64731FA170BCd9423bf) to various recipients and contracts were initiated.
These transactions included transfers of ETH and interactions with different tokens and smart contracts, such as Dai Stablecoin, Loopring (LRC) Token, and 1inch v5: Aggregation Router.
Reason appears to be an access control issue leading to re-entrancy that authorised the attacker to withdraw funds according to Certik. Dolomite have now revoked access to the attackers address.
Dolomite attempted to contact the hacker in order to recover funds.
How To Protect Myself?
Revoke your approval to 0xE2466deB9536A69BF8131Ecd0c267EE41dd1cdA0 address using https://revoke.cash. Consider reviewing what approvals you have on your wallet and remove what is not absolutely necessary.