ChainCatcher reports that Makina, a multi-chain DeFi execution engine, has released an update on yesterday's hacking attack. The attack only affected users providing liquidity to the Curve DUSD/USDC pool; users holding DUSD, Pendle, and Gearbox positions were unaffected.
Makina has obtained clues about the hacker's identity and is actively contacting them. Makina took a snapshot of the Curve DUSD/USDC pool before the attack. If you are still a liquidity provider in the Curve DUSD/USDC pool, please withdraw your funds unilaterally to DUSD until further notice. The official team is taking further steps, disabling recovery mode and re-enabling redemption functionality.
Yesterday, Makina suffered an attack on the Ethereum network, resulting in the loss of 5,107,871 USDC. The vulnerability allowed attackers to manipulate liquidity pool prices, artificially inflating the value of liquidity providers' assets, thus enabling arbitrage attacks.
