Memecoin launchpad on BNB Chain, 4.Meme has restored its token launch perform following an exploit that resulted in a $130,000 loss.
In a March 18 submit on X, the 4.Meme group confirmed it had suffered an assault, prompting an emergency suspension of its launch perform. The platform acknowledged:
“Presently, 4.Meme is underneath assault, and the launch perform has been suspended for emergency investigation. We’ll compensate affected customers and supply a injury submission kind to gather related info.”
Hours later, the group introduced that the launch perform had resumed after finishing a radical safety overview.
The group additionally confirmed that compensation for impacted customers had begun and urged them to submit claims for processing. Affected people should be verified, and payouts are anticipated throughout the week.
Regardless of these updates, 4.Meme didn’t disclose the precise quantity misplaced within the assault or the reason for the breach.
Nonetheless, this marks the second important exploit on 4.Meme in lower than two months.
On Feb. 11, the platform suffered a liquidity manipulation assault, resulting in the suspension of its Liquidity Supplier (LP). Safety analysts estimated losses from that incident to be between $183,000 and $200,000
Understanding this assault
Web3 safety agency SlowMist defined that the attacker exploited a vulnerability within the 0x7f79f6df perform, permitting them to buy tokens earlier than launch.
Utilizing this perform, the attackers despatched tokens to a PancakeSwap Pair tackle that had not but been created. This loophole enabled them to ascertain the Pair and inject liquidity with out transferring the yet-to-be-launched tokens.
The attacker bypassed 4.Meme’s switch restrictions (MODE_TRANSFER_RESTRICTED) and manipulated liquidity at an unintended worth, in the end draining pool funds.
By means of this assault, blockchain safety agency PeckShield reported that the hacker siphoned roughly 200 BNB (valued at $130,000) and moved the funds to FixedFloat.
