PANews reported on December 5th that, according to PeckShieldAlert, the stablecoin project USPD suffered a major security vulnerability, resulting in a loss of approximately $1 million. USPD officials confirmed that the protocol was exploited, with attackers minting tokens without authorization and draining liquidity. The official team urgently advised users to immediately revoke all token authorizations for the USPD contract. The USPD protocol has been confirmed to have been attacked by the "CPIMP" attack. During the deployment phase, the attacker used Multicall3 to preemptively initialize the proxy, seize administrator privileges, and impersonate an audited contract implementation. The official statement claims the logic is not a contract vulnerability; the attacker had been concealed for several months before upgrading the proxy, minting approximately 98M USPD, and transferring approximately 232 stETH. USPD has demanded that users immediately revoke all authorizations and has published the attack addresses: 0x7C97…9d83 (Infector) and 0x0833…215A (Drainer). They are cooperating with law enforcement and white-hat hackers to track down the attacker and have promised a 10% bounty for their return.PANews reported on December 5th that, according to PeckShieldAlert, the stablecoin project USPD suffered a major security vulnerability, resulting in a loss of approximately $1 million. USPD officials confirmed that the protocol was exploited, with attackers minting tokens without authorization and draining liquidity. The official team urgently advised users to immediately revoke all token authorizations for the USPD contract. The USPD protocol has been confirmed to have been attacked by the "CPIMP" attack. During the deployment phase, the attacker used Multicall3 to preemptively initialize the proxy, seize administrator privileges, and impersonate an audited contract implementation. The official statement claims the logic is not a contract vulnerability; the attacker had been concealed for several months before upgrading the proxy, minting approximately 98M USPD, and transferring approximately 232 stETH. USPD has demanded that users immediately revoke all authorizations and has published the attack addresses: 0x7C97…9d83 (Infector) and 0x0833…215A (Drainer). They are cooperating with law enforcement and white-hat hackers to track down the attacker and have promised a 10% bounty for their return.
Stablecoin protocol USPD suffered a loss of approximately $1 million due to the "CPIMP" attack.
PANews reported on December 5th that, according to PeckShieldAlert, the stablecoin project USPD suffered a major security vulnerability, resulting in a loss of approximately $1 million. USPD officials confirmed that the protocol was exploited, with attackers minting tokens without authorization and draining liquidity. The official team urgently advised users to immediately revoke all token authorizations for the USPD contract.
The USPD protocol has been confirmed to have been attacked by the "CPIMP" attack. During the deployment phase, the attacker used Multicall3 to preemptively initialize the proxy, seize administrator privileges, and impersonate an audited contract implementation. The official statement claims the logic is not a contract vulnerability; the attacker had been concealed for several months before upgrading the proxy, minting approximately 98M USPD, and transferring approximately 232 stETH. USPD has demanded that users immediately revoke all authorizations and has published the attack addresses: 0x7C97…9d83 (Infector) and 0x0833…215A (Drainer). They are cooperating with law enforcement and white-hat hackers to track down the attacker and have promised a 10% bounty for their return.
Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact [email protected] for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.
You May Also Like
Filecoin Breakout Alert: Analysts Eye Explosive Jump Toward $15 and $30
Filecoin (FIL) is currently trading at $1.46, marking a 6.62% decline over the past 24 hours, while its trading volume rose slightly to $139.65 million, an increase of 1.16%. The token has also dropped 10.32% over the past week, reflecting persistent downward pressure across the decentralized storage sector. Despite the short-term weakness, market observers note […]
Share
Tronweekly2025/12/06 07:00
Tokenized Assets Shift From Wrappers to Building Blocks in DeFi
The post Tokenized Assets Shift From Wrappers to Building Blocks in DeFi appeared on BitcoinEthereumNews.com. RWAs are rapidly moving on-chain, unlocking new opportunities for investors and DeFi protocols, according to a new report from Dune and RWAxyz. Tokenized real-world assets (RWAs) are moving beyond digital versions of traditional securities to become key building blocks of decentralized finance (DeFi), according to the 2025 RWA Report from Dune and RWAxyz. The report notes that Treasuries, bonds, credit, and equities are now being used in DeFi as collateral, trading instruments, and yield products. This marks tokenization’s “real breakthrough” – composability, or the ability to combine and reuse assets across different protocols. Projects are already showing how this works in practice. Asset manager Maple Finance’s syrupUSDC, for example, has grown to $2.5 billion, with more than 30% placed in DeFi apps like Spark ($570 million). Centrifuge’s new deJAAA token, a wrapper for Janus Henderson’s AAA CLO fund, is already trading on Aerodrome, Coinbase and other exchanges, with Stellar planned next. Meanwhile, Aave’s Horizon RWA Market now lets institutional users post tokenized Treasuries and CLOs as collateral. This trend underscores a bigger shift: RWAs are no longer just copies of traditional assets; instead, they are becoming core parts of on-chain finance, powering lending, liquidity, and yield, and helping to close the gap between traditional finance (TradFi) and DeFi. “RWAs have crossed the chasm from experimentation to execution,” Sid Powell, CEO of Maple Finance, says in the report. “Our growth to $3.5B AUM reflects a broader shift: traditional financial services are adopting crypto assets while institutions seek exposure to on-chain markets.” Investor demand for higher returns and more diversified options is mainly driving this growth. Tokenized Treasuries proved there is strong demand, with $7.3 billion issued by September 2025 – up 85% year-to-date. The growth was led by BlackRock, WisdomTree, Ondo, and Centrifuge’s JTRSY (Janus Henderson Anemoy Treasury Fund). Spark’s $1…
Share
BitcoinEthereumNews2025/09/18 06:10
XRP Price Plunges 3.5% As Santiment Says Soaring FUD May Spark A Rally
The International Monetary Fund (IMF) warned that rising stablecoin adoption could weaken central banks’ control over monetary policy and threaten nations’ financial sovereignty. While stablecoin [...]
Share
Insidebitcoins2025/12/05 18:45