Express

DeFi Asset Management Platform Zapper Reveals Vulnerabilities in the Old "Polygon Bridge" Contract

Amy Liu

Summary: DeFi asset management platform Zapper tweeted that a vulnerability was found in the old "Polygon Bridge" smart contract that would allow an attacker to steal funds that had unlimited approvals. Zapper exploited the vulnerability ourselves and all the funds have been rescued. A post-mortem will follow soon. Zapper reminds users that if you previously had ...

DeFi asset management platform Zapper tweeted that a vulnerability was found in the old "Polygon Bridge" smart contract that would allow an attacker to steal funds that had unlimited approvals. Zapper exploited the vulnerability ourselves and all the funds have been rescued. A post-mortem will follow soon.

Zapper reminds users that if you previously had an infinite approval for the bridge contract, you will see a prompt on Zapper to revoke.If you don't see anything, you were not affected by the vulnerability. The current Zapper polygon bridge contract does not have this vulnerability.

By Amy Liu

  • BTC Weekly Outlook: The Oversold Bounce—A Bottom or a Shorting Opportunity? 2 days ago
  • The Making of a Political Darling: Is Chainlink’s Government Deal a Victory for Tech or... 6 days ago
  • Google Steps Into Blockchain: A New Front in the “Ledger Wars” 8 days ago
  • Bitcoin Weekly Analysis: Is a Bear Market on the Horizon? 10 days ago
  • AI Fraud Is Breaking the Internet’s Trust Economy. Can Compliance Tech Keep Up? 13 days ago
  • You need to login to comment.