Pons respond to frontend authorization vulnerability: No Multicall3 function on Launchpad trading page, only 0.66 USD worth of NOXA affected
Odaily Planet Daily reported that Robinhood Chain launchpad platform Pons has officially responded to earlier reports about a token authorization vulnerability in its frontend, stating that the Pons launchpad trading page does not have any Multicall3 function. The Multicall3 function mentioned in the tweet originated from the old cross-chain bridge of the previous Debank Chain, which was launched before the Pons launchpad and does not affect launchpad users. It is currently confirmed that only 0.60 NOXA tokens, worth approximately 0.66 USD, were affected.
As a security precaution, Pons recommends that users who previously used the old cross-chain bridge revoke token authorizations via revoke.cash. The team is currently working with auditors to investigate potential risks and stated that they will restore Pons frontend services after confirming that no actual vulnerability exists.
