The USPD protocol official today issued an emergency security alert confirming that its protocol suffered a serious security bugs attack, resulting in unauthorized token minting and liquidity depletion. The attacker used an advanced attack technique called "CPIMP" (secret proxy in the middle of the proxy) to preemptively perform proxy initialization during deployment on September 16, gaining hidden administrator privileges. By installing "Shadow" and manipulating the event data, the attacker suc...
USPD协议官方今日发布紧急安全警报,确认其协议遭遇严重安全漏洞攻击,导致未经授权的代币铸造和流动性耗尽。攻击者利用名为"CPIMP"(代理中间的秘密代理)的高级攻击手法,于9月16日在部署过程中抢先执行代理初始化,获取隐藏管理员权限。通过安装"影子"实现并操纵事件数据,攻击者成功规避了包括Etherscan在内的验证工具,隐藏数月后...