The Web3 community faced a significant security breach, resulting in the loss of $3.047 million in USDC due to a fake Request Finance contract linked to a Safe multi-sig wallet. The attacker created a nearly identical malicious contract that tricked users into approving hidden conditions during batch transactions, allowing them to drain funds which were then swiftly converted to ETH via Tornado Cash. While only one user was affected, security experts are investigating potential vulnerabilities, emphasizing the need for vigilance when verifying contract addresses. Users are advised to carefully review batch approvals to prevent similar exploits in the future.
Fake Request Finance Contract Drains $3M $USDC From Safe Wallet
