Allbridge Exploited for Over Half a Million Dollars in Flash Loan Attack
Allbridge, a multichain token bridge, has been the target of a $573,000 exploit by an attacker who manipulated the BNB Chain pools swap price.
Allbridge has extended an offer to the attacker to reveal themselves as a “white hat” and receive an undisclosed bounty in exchange for returning the funds.
In addition to this, Allbridge is collaborating with law firms, law enforcement, and other affected projects to locate the perpetrator and prevent future attacks.
Through this approach, the attacker was able to manipulate the USDT price in the pool, which facilitated a swap of $40,000 BUSD for $789,632 USDT. As a preventive measure against future attacks, Allbridge temporarily suspended its bridge protocol and plans to restart it after addressing the vulnerability.
As per CertiK, a blockchain security firm, the flash loan attack used in the Allbridge exploit is becoming more popular among hackers. In March, a total of 26 crypto projects were hacked, which caused a combined loss of $211 million.
The largest share of these losses, over 90%, was due to the Euler Finance hack on March 13, whereas other significant attacks were inflicted on projects such as Swerve Finance, ParaSpace, and TenderFi.