Attacker drains over $9 million from Resupply stablecoin protocol after manipulating token price
Quick Take Resupply, a stablecoin protocol tied to lending market liquidity, was exploited for around $9.5 million. Resupply acknowledged the incident and said the compromised contract has been identified and paused.
Stablecoin protocol Resupply was exploited for around $9.5 million through a market manipulation of exchange rates, according to security analysts.
Resupply is a stablecoin protocol that leverages the liquidity and stability of lending markets.
The exploit centered on cvcrvUSD, a wrapped version of Curve USD (crvUSD) staked in Convex Finance. Analysts said the attacker artificially inflated the price of cvcrvUSD by sending donations, which caused its share price to spike.
“The hacker exploited the cvcrvUSD vault, allowing the attacker to borrow $10 million in reUSD with only 1 wei of share as collateral,” said Xuxian Jiang, founder and CEO of PeckShield.
Resupply’s smart contract, known as ResupplyPair (CurveLend: crvUSD/wstUSR), used this inflated cvcrvUSD price in its exchange rate calculations. As a result, the rate crashed, noted security analysts.
The attacker took advantage of this price distortion by invoking the borrow function in the ResupplyPair contract. This allowed them to borrow 10 million reUSD (Resupply's native stablecoin) using only one wei of cvcrvUSD as collateral.
The missing funds originated from the wstUSR market, which the attacker exploited through borrowing, explained analysts at Blocksec.
Analysts added that the attacker later converted the borrowed reUSD into other assets on external markets for profit.
Resupply confirmed the exploit and said the affected contract has been identified and paused.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
Prediction markets meet Tinder: Can you place bets on Warden's new product by simply swiping left or right?
No need for chart analysis, macro research, or even inputting the amount of funds.
Why does bitcoin only rise when the U.S. government reopens?
The US government shutdown has entered its 36th day, leading to a decline in global financial markets. The shutdown has prevented funds from being released from the Treasury General Account (TGA), draining market liquidity and triggering a liquidity crisis. Interbank lending rates have soared, while default rates on commercial real estate and auto loans have risen, increasing systemic risk. The market is divided over future trends: pessimists believe the liquidity shock will persist, while optimists expect a liquidity release after the shutdown ends. Summary generated by Mars AI. The accuracy and completeness of this summary are still being improved as the Mars AI model is updated.
Jensen Huang predicts: China will surpass the United States in the AI race
Nvidia CEO Jensen Huang stated bluntly that, thanks to advantages in electricity prices and regulation, China will win the AI race. He added that overly cautious and conservative regulation in Western countries such as the UK and the US will "hold them back."
OpenAI CFO: AI doesn’t need to cool down, the enthusiasm is far from enough!
As Wall Street grows increasingly concerned about an AI bubble burst, OpenAI's CFO is instead calling for "more enthusiasm." She also stated that going public is currently not in the company's plans.
Trending news
MoreCrypto prices
More
