- The hack on Polygon stablecoin QiDao comes barely a day after Polygon Community accomplished a $450 million non-public token sale
- QiDao protocol shared an replace, confirming that person funds on QiDao contracts are protected
Mai Finance creator QiDao has been exploited to a tune of $13 million. The Polygon’s native stablecoin protocol shared a Twitter post a couple of hours in the past revealing that its Superfluid vesting contract had been compromised.
“Superfluid’s vesting contract for QI has been exploited. Person funds on QiDao contracts stay protected. The exploit is solely on Superfluid. We’ll launch an replace once we know extra,” QiDao wrote.
The crew despatched a fast replace through a follow-up post detailing that the scenario was nonetheless underneath evaluation. The replace additionally specified that no person funds had been affected and that Qi bridging had been suspended in the meanwhile.
“We’re nonetheless assessing the scenario. We will affirm that each one funds in QiDao are protected. No person funds have been affected. We’re conscious there are different tokens affected. We’ll replace the group once we study extra. Qi bridging is quickly paused.”
QI token worth dips
Though the information of the exploit hadn’t made headlines on many crypto information retailers on the time, it left an enormous dent out there worth of the governance token QI. The value of QI plunged from $1.238 proper earlier than the exploit was reported to $0.166 in lower than two hours because the perpetrator(s) dumped the tokens on Quickswap.
Market information reveals that the token has hemorrhaged 40% of its worth within the final 24 hours. Many traders rushed to purchase QI at a low worth, consequently pushing the worth greater. QI is now buying and selling at $0.73 as per CoinMarketCap.
Superfluid, which describes itself as a ‘DeFi primitive to automate recurring transactions and monetise Web3’, is a great contract framework that operates on Ethereum.
The Superfluid Twitter crew acknowledged the exploit on QiDAO and warned customers to “keep away from interactions with Superfluid sensible contracts till additional discover.” The crew additionally requested customers to unwrap their SuperTokens as they may very well be focused by the malicious actor(s).
The attacker(s) stole an estimated $13 million price of tokens, in all probability from the crew vested token pool since person funds weren’t affected. CoinTelegraph reviews that these tokens embrace 1.5 million MOCA, 562,000 USDC, 40,000 sdam3CRV, 23,000 STACK, 44 SDT, and 24 WETH.
Price noting, the exploit comes lower than two months since Superfluid launched MAIx, permitting customers to stream MAI (miMatic). Beforehand QiDao leveraged Superfluid to stream QI tokens to contributors on Polygon.