SlowMist said LDO’s flawed token contract allows bad actors to facilitate “fake deposit” attacks on exchanges because LDO’s token contract enables users to execute transactions even where they don’t have sufficient funds. This code deviates from theHowever, Lido Finance argued the flaw is built into all ERC-20 tokens — not just Lido’s LDO token:
This behaviour is expected and conforms to the ERC20 token standard . Both LDO and stETH remain safe.— Lido SlowMist said the “fake deposit” attacks came from LDO’s token contract executing transfers where the value is larger than what the user actually owns, triggering a false return as opposed to reverting the transaction. While the firm said Lido's token contract has recently been exploited via this attack, no on-chain evidence was provided.
Finance Finance Latest News, Finance Finance Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Source: trtworld - 🏆 101. / 63 Read more »