On Wednesday, nearly $9 million leaked from the Safemoon token liquidity pool after attackers exploited a smart contract vulnerability.
Blockchain data shows that multiple tokens were exchanged in the wee hours of Wednesday in a single transaction, and the attacker ended up stealing billions of Safemoon SFM tokens locked in the LP (liquidity pool).
Today the Safemoon developers tweeted that their liquidity pair has been compromised:
"We want to inform you that our LP has been compromised. We are taking swift action to try to resolve the issue as quickly as possible."
Safemoon CEO John Caroni said in a follow-up tweet that the vulnerability has been fixed and all is well, with only one couple affected:
“We have identified the suspected exploit, patched the vulnerability, and are engaging a chain forensics consultant to determine the exact nature and extent of the exploit.”
Some developers pointed to a faulty burning function in Safemoon smart contracts as the key cause of the exploit.