Home
News
Details

SlowMist's Yu Chui: The Squid security incident was caused by a vulnerability in the SquidRouterModule of Safe Wallet.

iconTechFlow
Share
Share IconShare IconShare IconShare IconShare IconShare IconCopy
This is the logo of the coin.
ETH
$2,129.550.47%
AI summary iconSummary

expand icon
SlowMist founder Yu Chui attributed the Squid security incident to a vulnerability in the SquidRouterModule within Safe wallets, not to private key exposure. Attackers forged messages to bypass verification, draining $3.2 million from 86 Gnosis Safe wallets on Base and Ethereum. Squid stated it was not affected. CFT measures are facing new challenges as safe-haven assets remain vulnerable to exploit-driven attacks.

Yu Xian, founder of SlowMist, posted on X to analyze the Squid security incident, stating that sampling revealed all related Safe wallets were single-signature, with different owners; however, the issue was not with the private keys, but with a vulnerable module (SquidRouterModule) used by these Safe addresses. Attackers could forge messages to easily bypass validation and initiate subsequent exchange operations to transfer funds from the target Safe wallets. Yu Xian also disclosed the attacker’s profit accumulation addresses. Previously, a third-party Gnosis Safe module on Base and Ethereum was exploited, resulting in approximately $3.2 million in losses affecting 86 Gnosis Safe wallets that had added this contract as a trusted Safe module. The contract was named “SquidRouterModule” on Basescan. Subsequently, Squid clarified that it was not affected by the Gnosis Safe-related vulnerability incident.

Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information. Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.