Scallop Confirms Targeted Exploit: 150,000 SUI tokens Siphoned From sSUI Rewards Pool. The Sui-based DeFi protocol Scallop has confirmed that it was the target of an exploit that drained roughly 150,000 SUI from its sSUI rewards pool while revealing a decades-old bug lurking inside a deprecated smart contract. As per the official statement of the protocol, they noticed that the attacker disturbed their active codebase and standard SDK interfaces completely. Instead, they called into a deprecated V2 package version that dated back to November 2023, which was still on-chain but sat around unused for months. Having this level of precision
The post Scallop Exploit Drains 150K SUI Through Deprecated Contract As Hidden Vulnerability Lurks For 17 Months appeared first on The Merkle News.