Slow Mist Cosine: Ekubo Contract Exploited, User Loses 17 WBTC

Odaily Planet Daily News: Slow Mist founder Cosine posted on platform X, stating, "The Ekubo related contract has been maliciously exploited. The reason is that if users previously authorized related tokens to: 0x8CCB1ffD5C2aa6Bd926473425Dea4c8c15DE60fd;

For example, this user 0x765DEC's unlimited WBTC authorization (158 days ago): The attacker can designate the authorized user as the payer, and in the payCallback, make the contract call WBTC transferFrom(victim, Ekubo Core, amount). Then, through Ekubo Core (0xe0e0e08A6A4b9Dc7bD67BCB7aadE5cF48157d444)'s withdraw/pay settlement process, the assets are transferred to the attacker. This operation was executed 85 times, each time for 0.2 WBTC, ultimately resulting in a loss of 17 WBTC for user 0x765DEC. Users are advised to immediately follow the official reminder and check the authorizations for the following contracts: 0x8ccb1ffd5c2aa6bd926473425dea4c8c15de60fd (V2)

0x4f168f17923435c999f5c8565acab52c2218edf2 (V3)

Arbitrum: 0xc93c4ad185ca48d66fefe80f906a67ef859fc47d (V3)."