Gnosis Pay Exploited Via Signature Verification Flaw on June 1, 1.5M USD Stolen and Refunded

GNO-0.35%

According to Gnosis, the Gnosis Pay service suffered a security vulnerability on June 1 that allowed attackers to exploit signature verification flaws in Zodiac's Delay Module and Roles Module. Hackers used the defect in ERC-1271 signature validation logic to forge withdrawal authorizations and drain approximately 1.5 million USD from user wallets.

Gnosis has covered all losses and completed user refunds. The company has restored over 99% of services and expanded security audits and dependency monitoring.

Disclaimer: The information on this page may come from third-party sources and is for reference only. It does not represent the views or opinions of Gate and does not constitute any financial, investment, or legal advice. Virtual asset trading involves high risk. Please do not rely solely on the information on this page when making decisions. For details, see the Disclaimer.
Comment
0/400
No comments