A flaw in ResupplyFi’s contract allowed an attacker to manipulate token prices and drain $9.6 million from its wstUSR market.
Decentralized finance (DeFi) protocol Resupply confirmed a security breach in its wstUSR market, which led to an estimated $9.6 million in crypto losses.
Blockchain security firm Cyvers said on Thursday the exploit was triggered by a price manipulation attack involving the protocol’s integration with a synthetic stablecoin called cvcrvUSD.
Meir Dolev, Cyvers’ co-founder and chief technology officer, told Cointelegraph that the attacker exploited a price manipulation bug in the ResupplyPair contract. “By inflating the share price, they borrowed $10 million reUSD using minimal collateral,” Dolev said.
Read more