SushiSwap’s Token Platform, MISO Lost $3M in ETH in an Attack

MISO, the token platform of the popular DEX SushiSwap, has become the victim of a supply chain attack.

According to SushiSwap’s CTO Joseph Delong, the token platform of the popular DEX SushiSwap has become the latest hack victim with over $3 million in ETH stolen. It worth around $ 3,078,688 in cash at ETH current price, $ 3,560.

Delong announced the news on Twitter on September 17, 2021, saying,

"The Miso front end has become the victim of a supply chain attack. An anonymous contractor with the GH handle AristoK3 injected malicious code into the Miso front end."

In addition, he added that Jay Pegs Auto Mart was the only auction exploited. AS he continues, he adds, "The attacker inserted their own wallet address to replace the auction wallet at the auction creation. Affected auctions have all been patched."

Also, MISO contacted crypto exchanges FTX and Binance to hand over the attackers' KYC information. However, the exchanges didn't give any details yet.

Additionally, Delong believes that the attackers are also familiar with Yearn and many other projects. As a matter of fact, they urge Yearn to check its front ends for exploits.

Moreover, the company has contacted its lawyer to file an Internet Crime Complaint Center (IC3) complaint with the FBI in case the funds aren't returned by 8 AM ET.

MISO serves as a suite of open-source smart contracts created for project release on the SushiSwap exchange. What is more, it is one of the largest DEX with a 24-hour trading volume of nearly $700 million.