In a significant security breach, scammers have successfully stolen $880,000 in cryptocurrency via a fake Discord server masquerading as part of the Across Protocol ecosystem.
The Warning from ZachXBT
On December 26, renowned crypto sleuth ZachXBT posted a warning in a Telegram channel about a suspicious link in Across Protocol’s documentation. The link directed users to a fraudulent Discord server, indicating a possible compromise of the protocol’s vanity invite address.
The $880k Crypto Theft
A blockchain forensic firm, Scam Sniffer, revealed in their analysis that an unnamed blockchain entity suffered a loss of $880,000 in aEthWBTC, following interaction with a malicious ERC-20 permit message. While the firm didn’t directly link the incident to Across Protocol, ZachXBT associated it with vulnerabilities in the protocol’s documentation.
Across Protocol’s Response
In response to the breach, Across Protocol acknowledged the existence of the counterfeit Discord server. The team is currently working to dismantle the illegitimate server and mitigate further risks. However, they have not yet disclosed the full extent of the losses incurred.
About Across Protocol
Across Protocol is known for its cross-chain bridge solutions, focusing on layer-2 technologies and rollups. It employs UMA’s optimistic oracle for enhanced security and has raised $10 million in funding from notable investors, including Blockchain Capital.
Conclusion
This incident serves as a stark reminder of the risks associated with digital assets and the importance of vigilance in the crypto community. Users are advised to verify the authenticity of links and platforms before engaging in any transactions.