The basic DeFi project will disappear after the carpet is pulled

BaseBros Fi, a decentralized finance (DeFi) protocol for product optimization on the Base blockchain, has disappeared from the internet after stealing its users' investments via an unknown smart contract.

On September 13, BaseBros deleted the official website and social media accounts on X and Telegram. Blockchain security firm ChainAudits, which has previously audited some of BaseBros' smart contracts, found that the Diffie project orchestrated carpet-dragging through an “unproven and unproven vault contract.”

BaseBros had nearly 2,000 followers on X and over 3,300 members on Telegram just before it disappeared.

Table of Contents

Toggle

A vulnerable smart contract was audited

ChainAudits claims to have audited four of the five smart contracts used in the BaseBros project and

Unfortunately, the contract that facilitates the Vault Contract is not included in our audit scope or verified on the blockchain.

The unaudited contract contained a backdoor vulnerability that allowed the company's owners to withdraw funds deposited into the ‘strategy' contract.

The BaseBros carpet drag had no effect on the flawless protocol.

It was mistakenly believed that the rag drag incident would affect the seamless protocol due to the same contract designation. According to blockchain investigator Syvers, the bad actor made off with $130,000 worth of stolen funds through crypto mixing service Tornado Cash.

Seamless has conducted an internal investigation and declared that its protocol and investors' funds are safe from any attack. Chain Audits also confirmed that BaseBro Fi is the only protocol that has lost money from multiple pools.

Related: Indonesian Crypto Exchange Indodax Goes Offline After $22M Suspect

Recently, an experienced hacker credited the attacker responsible for the $27 million hack of DeFi protocol Penpi.

The Penny hacker received an onchain appreciation message from the Euler Finance hacker who stole $195 million in March 2023.

“Nice job, bro. I haven't seen a hack like this in a while. I'm glad you kept all the money and didn't let these bastards get a dollar back if you took it. You win or you lose. Good job.”

However, the Euler financial hacker returned 90% of the stolen money in return for legal immunity and a 10% reward.

Magazine: Proposed Change Could Save Ethereum From L2's ‘Roadmap to Hell'