Tim

Today, a series of transactions across different networks were detected showing what it looked like an exploit on some Aave peripheral contracts (not part of the Aave Protocol itself). Before any further detailed report, we would like to clarify the following for transparency with the Aave and DeFi ecosystem: - The smart contracts involved in said transactions are peripheral contracts, used from our understanding only on the https://t.co/BUQtHwyuO7 user interface. No core smart contract of Aave involving all pool dynamics is affected, or has any relation with these transactions. - The smart contracts affected interact exclusively with the user using it, and with the contract itself. That means that any potential exploiter should never be able to affect any other users. - The assets seemly extracted are result of what usually is denominated as “dust” on swaps, small leftovers left on the contract after a successful exchange. The contract has slippage protections, but full dust cleanup from itself is not a feature, and dust has been accumulated after a long period of time and numerous transactions. No funds were extracted from any user in these transactions, and all users funds are totally safe in what relates to Aave. - https://t.co/BUQtHwyuO7 operates with exact approvals (permit with expiry when available) when interacting with these contracts. That means there is no vector related with “infinite approvals” possible, in addition to the previous point of one user not being able to affect anyhow another. For precaution, the maintainer of https://t.co/BUQtHwyuO7 (Aave Labs) has temporarily disabled those features and any other of similar nature while we finish the research. As previously commented, a more detailed report will follow later on the Aave governance forum.

The Biden Administration’s crypto timeline: - Sam Bankman-Fried is the second largest donor to Biden’s presidential campaign - Biden appoints Gary Gensler as chairman of the SEC - Gary Gensler hosts friendly meeting with Bankman-Fried and FTX execs, no action letter discussed - After winning favor with the SEC, FTX is exposed as one of the largest frauds in history by the crypto community - The SEC attacks sound, legal businesses who have been attempting to work in good faith with regulators for over a decade (Coinbase, Kraken)

While most of the cross-chain routes of Multichain protocol are functioning well, some of the cross-chain routes are unavailable due to force majeure, and the time for service to resume is unknown. After service is restored, pending transactions will be credited automatically. Multichain will compensate users who are affected during this process, and the compensation plan will be announced later.