The Li.Fi protocol, an API for EVM and Solana swaps, has suffered a major security breach, stealing over $10 million in cryptocurrencies. Hackers exploited vulnerabilities in the protocol, draining assets from contracts and users’ connected wallets.
Hackers Exploit Li.Fi Protocol: $10 Million Drained
Cyvers Alerts reported the breach, advising users to revoke approvals for a specific contract address to prevent further losses. Li.Fi has also warned users to avoid interactions with its applications and provided a list of addresses to revoke.
In a tweet after Cyvers notification, the Li.Fi protocol team warned users not to interact with Li.Fi-powered applications until further notice and also provided a list of additional addresses to revoke for those who had manually set infinite approvals:
- 0x1231deb6f5749ef6ce6943a275a1d3e7486f4eae
- 0x341e94069f53234fE6DabeF707aD424830525715
- 0xDE1E598b81620773454588B85D6b5D4eEC32573e
- 0x24ca98fB6972F5eE05f0dB00595c7f68D9FaFd68
This incident follows a series of recent DeFi breaches, including significant losses for Pike Finance and Dough Finance. The ongoing attacks highlight the risks in the DeFi space and the need for heightened vigilance.