QI Quadriga Initiative

Sep 2025 - Unknown Base Smart Contract Wrapped Ethereum Attack Theft - $21k (Global)

The unknown and unverified victim smart contract was created on September 21st, 2024.

Unfortunately, the smart contract had a vulnerability.

It does not appear that any analysis of the attack has been published.

TenArmor reported that there was "an approximately loss of $22K", while BlockSec Phalcon reported $21k. Reviewing the transaction on BaseScan suggests an amount closer to $21k.

The transaction was picked up and reported on by both BlockSec Phalcon and TenArmor. However, neither prepared any analysis of the exploit.

There does not appear to be any further details known about the exploit or victim smart contract.

There is no evidence that any funds have been recovered.

There may be further details available in the future.

Further Analysis

An unknown and unverified smart contract was exploited due to a vulnerability. The incident resulted in a loss of approximately $21,000–$22,000, as reported by BlockSec Phalcon and TenArmor. Despite both parties acknowledging the incident, no detailed analysis of the exploit has been published. The transaction can be viewed on BaseScan, but no additional information about the vulnerability or the victim contract is currently available, and there is no indication that any funds have been recovered. Further details may emerge in the future.

How Could This Have Been Prevented?

More Cryptocurrency Exchange Hacks/Scams/Frauds

UXLINK MultiSig Wallet Single Owner Vulnerability Exploited > > < < New Gold Protocol Flashloan Attacks Flawed Burn Mechanism

Sources/Further Reading

TenArmor - "Our system has detected that #unverified contract 0x506a on #BASE was attacked, resulting in an approximately loss of $22K." - Twitter/X (Dec 31)
Initial Attack Transaction - BaseScan (Dec 31)
Attacker Address - BaseScan (Dec 31)
BlockSec Phalcon - "ALRET! Our system has detected a suspicious transaction targeting an unknown contract on #Base, resulting in a loss of $21K." - Twitter/X (Dec 31)
Victim Smart Contract - BaseScan (Dec 31)
Victim Smart Contract Creation - BaseScan (Dec 31)

Join Us!

 Name: Email:
t.me/QuadrigaInitiative /r/QuadrigaInitiative @QuadrigaInit info@quadrigainitiative.com
Sign-Ups: 100%

Your use of this site/service accepts the Terms of Use and Privacy Policy. This site is not associated with Ernst & Young, Miller Thompson, or the Official Committee of Affected User. For questions or enquiries, email info@quadrigainitiative.com.