The Decentralized Finance Protocol (DeFi) xToken announced the use of vulnerability by an attacker who, thanks to flash loans, got $24.5 million worth of assets.
"Contracts xSNXa and xBNTa were subject to exploitation. As further investigation progresses, all contracts are suspended. Liquidity pools are devastated, but most of the SNX and BNT tokens remain in xToken contracts. We are obliged to give an explanation to the community and will soon provide more detailed information" the xToken team reports.
According to the head of the Polymath blockchain team, Mudit Gupta, the attacker appropriated more than $8 million in SNX tokens of the xToken project and more than $6 million in BNT protocol tokens:
"Contracts xToken were exploited and the hacker managed to get more than $8 million in SNX tokens and $6 million in BNT tokens. The hacker created more tokens xSNX and xBNT than should be. I looked briefly at the transaction and can provide an early analysis of the events."