Hyperdrive suffers contract vulnerability attack, potentially losing $700,000

According to crypto influencer @CryptoNyaRu, Hyperdrive, a DeFi protocol within the Hyperliquid ecosystem, was attacked. The attack occurred because a user set the Router as the Operator during a lending process. However, the Router can call any whitelisted contract, and the Market contract is also on the whitelist. This allowed third-party addresses to manipulate user positions through the Router. The relevant contract addresses are Router (0x8D9e...) and Market (0xa522...). Exploitable transactions have already occurred, posing a risk to user asset security.

According to @xhanTululu's detection, Hyperdrive may have lost $700,000.