慢雾余弦：Ekubo合约遭恶意利用，已有用户损失17枚WBTC

Odaily Planet Daily News: Cos, the founder of SlowMist, has posted on X platform stating, "The contract related to Ekubo has been maliciously exploited. The reason is that if a user has previously authorized relevant tokens to: 0x8CCB1ffD5C2aa6Bd926473425Dea4c8c15DE60fd；

Take this user 0x765DEC’s unlimited WBTC authorization (158 days ago) as an example: The attacker can designate the authorized user as a payer, and in the payCallback, make the contract call WBTC transferFrom(victim, Ekubo Core, amount). Then, through Ekubo Core (0xe0e0e08A6A4b9Dc7bD67BCB7aadE5cF48157d444)’s withdraw/pay settlement process, the assets are transferred to the attacker. This operation was executed 85 times, each for 0.2 WBTC, ultimately causing user 0x765DEC to lose 17 WBTC. It is recommended that users check the following contract authorizations as soon as possible according to official reminders: 0x8ccb1ffd5c2aa6bd926473425dea4c8c15de60fd (V2)

0x4f168f17923435c999f5c8565acab52c2218edf2 (V3)

Arbitrum: 0xc93c4ad185ca48d66fefe80f906a67ef859fc47d (V3)."