There is no chance of chance, too many coincidences at the right moment.
A series of suspicious transactions resulting in significant losses were detected across several blockchain networks . The attack affected smart contracts deployed by two separate developers and unfolded almost simultaneously across different ecosystems, suggesting a pre-planned scenario.
According to the Falcon Security team, the attackers targeted contracts on the Ethereum, Arbitrum, Base, and BSC networks. The total damage exceeded $17 million. These were closed contracts with inaccessible source code. Analysis revealed the presence of an arbitrary call function, which allowed unauthorized operations.
The scheme was built on existing token management permissions . The attackers didn't hack wallets directly, but rather used previously approved access. The transferFrom mechanism was used to transfer assets from compromised contract accounts. This approach allowed them to bypass additional checks and quickly distribute transactions across networks.
Two deployment addresses suffered the largest losses. One lost approximately $3.67 million, the other approximately $13.41 million. The activity was detected shortly after the initial series of transactions. The transactions were analyzed using Falcon Explorer, which tracked the transfer chains and function call methods used.
Experts recommend that digital asset owners review their token management permissions and revoke suspicious or outdated permissions. Such permissions often remain active for long periods of time and become a convenient entry point for attacks if the contract logic is vulnerable.
A series of suspicious transactions resulting in significant losses were detected across several blockchain networks . The attack affected smart contracts deployed by two separate developers and unfolded almost simultaneously across different ecosystems, suggesting a pre-planned scenario.
According to the Falcon Security team, the attackers targeted contracts on the Ethereum, Arbitrum, Base, and BSC networks. The total damage exceeded $17 million. These were closed contracts with inaccessible source code. Analysis revealed the presence of an arbitrary call function, which allowed unauthorized operations.
The scheme was built on existing token management permissions . The attackers didn't hack wallets directly, but rather used previously approved access. The transferFrom mechanism was used to transfer assets from compromised contract accounts. This approach allowed them to bypass additional checks and quickly distribute transactions across networks.
Two deployment addresses suffered the largest losses. One lost approximately $3.67 million, the other approximately $13.41 million. The activity was detected shortly after the initial series of transactions. The transactions were analyzed using Falcon Explorer, which tracked the transfer chains and function call methods used.
Experts recommend that digital asset owners review their token management permissions and revoke suspicious or outdated permissions. Such permissions often remain active for long periods of time and become a convenient entry point for attacks if the contract logic is vulnerable.