Evoq Finance contract attacked, losing approximately $420,000

PA一线
PA一线

PANews reported on September 10th that GoPlus Security monitored an attack on Evoq Finance's smart contract on BNB Chain. The attacker compromised the owner's account, transferred ownership to themselves, and then upgraded the contract to a malicious version, stealing approximately $420,000 from the protocol and user approvals. Users are urged to immediately revoke token approvals for contract 0xF9C74A65B04C73B911879DB0131616C556A626bE to prevent further losses. Project owners are advised to protect high-privilege accounts using multi-signature and regular key rotation.

Attack Overview: The attacker appears to have stolen the private key of the owner account (0xF08d1c) and used transferOwnership to transfer ownership to its address (0x7b416F). They then upgraded the proxy contract, draining funds from the contract and approved user accounts.

Share to:

Author: PA一线

This content is for informational purposes only and does not constitute investment advice.

BNB ChainSafety
Follow PANews official accounts, navigate bull and bear markets together
Telegram Discussion Group
Telegram News Channel
@PANewsCN
Recommended Reading
PA一线PA一线2025-09-09 15:19
SlowMist: DuckDB NPM account compromised, please be aware of risk prevention
PA一线PA一线2025-09-09 10:14
Ledger CTO: NPM attackers failed, with few victims
PA一线PA一线2025-09-09 09:12
Orderly: Unaffected by the recent NPM supply chain attack
慢雾科技慢雾科技2025-09-08 11:00
Fake Zoom conference phishing leads to millions of dollars in losses: A deep dive into the attack methods
PA一线PA一线2025-09-08 10:40
BNB Chain Annual Awards Announced, 30 Finalists Across 5 Categories
PA一线PA一线2025-09-08 10:32
Scallop: The Nemo protocol vulnerability incident will not affect Scallop's mining pool

Popular Articles

Industry News
Market Trends
Curated Readings
Subscribe

Curated Series

Ethereum's turbulent decade

Ethereum's turbulent decade

Ten years have passed since the creation of Ethereum. Where is the "world computer" headed? This special feature will feature selected articles reviewing Ethereum's turbulent decade of rise, challenges, and breakthroughs.

PAData: Web3 in Data

PAData: Web3 in Data

Data analysis and visual communication of industry hot spots help users understand the meaning and opportunities behind each data.

Pioneer's View: Crypto Celebrity Interviews

Pioneer's View: Crypto Celebrity Interviews

Exclusive interviews with crypto celebrities, sharing unique observations and insights

AI Agent: The Journey to Web3 Intelligence

AI Agent: The Journey to Web3 Intelligence

The AI Agen innovation wave is sweeping the world. How will it take root in Web3? Let’s embark on this intelligent journey together

Memecoin Supercycle: The hype around attention tokenization

Memecoin Supercycle: The hype around attention tokenization

From joke culture to the trillion-dollar race, Memecoin has become an integral part of the crypto market. In this Memecoin super cycle, how can we seize the opportunity?

Real-time tracking of Bybit attack

Real-time tracking of Bybit attack

Bybit suffered a security incident, and funds worth $1.44 billion were withdrawn. A North Korean hacker group was accused of being the perpetrator.

App内阅读