Crypto History

ERC777 reentry vulnerability was exploited to drain over 10 assets from all available Lendf.Me liquidity pools, totaling $25,236,849.44.

Written by 0x8aD3033E654B61e86C67Ef0EcDa6514127dC3C82

Verdict - This transaction reflects a hacker's malicious exploit of the Lendf.Me Decentralized Finance protocol, allowing them to "supply" collateral and then "withdraw" a much greater amount than actually supplied. The attack drained liquidity from 10 pools on the platform by exploiting a known weakness in the ERC777 token standard's internal logic as it relates to other smart contracts in DeFi applications. The hacker withdrew over $25 million from Lendf.Me's liquidity pools on April 19th, 2020, effectively hijacking a normal transaction to perform additional illicit operations.

Verified by gabagool.eth

Note: Edits were made to improve readability and clarity.

https://peckshield.medium.com/uniswap-lendf-me-hacks-root-cause-and-loss-analysis-50f3263dcc09