$242.70 2.48%
ETH · 2w

Defi-Saver: Disclosing a recently discovered Exchange vulnerability

Disclosing a recently discovered Exchange vulnerability

Earlier today a vulnerability in the DeFi Saver Exchange was disclosed to our team.

All funds (~$30k) affected by the vulnerability are safe and will be returned to their owners. We performed a white hat attack to move affected funds to a smart contract from where the funds can only be withdrawn by their original owner addresses.

These two smart contracts were deployed and used to (1) move funds and (2) keep them for their owners until withdrawal:

During the process a number of our transactions were front-run by arbitrage bots that detected these incoming transactions, but all of the funds collected by these bots have since also been returned.

No other part of DeFi Saver was affected by this vulnerability. Our Automation system, as well as MakerDAO, Compound and Smart Savings dashboards are not affected by this vulnerability in any way.

Securing your account

If you ever used the DeFi Saver Exchange to swap tokens, please go to and remove approvals for all listed tokens and contracts.

Removing approvals will secure your account from being affected by this vulnerability.

Retrieving funds

If your funds have been moved from your wallet, please take these steps to recover them:

Go to: Remove approvals for all listed tokens and contracts Click the Withdraw button to withdraw any moved funds

Once these approvals have been removed, your account can no longer be affected by this vulnerability in any way.

If funds were moved from your wallet, but you are not able to withdraw them through the interface, please contact us in our Discord or via Twitter DMs.

We will share more details about the vulnerability as well as steps...

Continue on
Recent news
ETH +2.48% · · Now

Unlock the Billions in Virtual Worlds based on Ethereum

This newsletter is sponsored by one of the world’s best podcasts😎, Zima Red. If you want to learn more about NFTs and the metaverse then I highly suggest you listen. Don’t know where to start? This �...