AIDC burn bug lets attacker drain 220.12 WBNB from PancakeSwap pair by abusing sync()

𝕏/@SlowMist_Team •

Revision history

3 recorded changes

Want your article here?

SlowMist says AIDC on BSC was exploited for 220.12 WBNB, about $120,929, after `_sellTransfer()` accrued a 30% burn amount without deducting it from the seller. Subsequent non-pair transfers called `_executeAccumulatedBurn()`, burning tokens from the PancakeSwap AIDC/WBNB pair instead of the user, then `sync()` made the manipulated reserves official. The attacker repeatedly deflated the pool’s AIDC reserve before a final swap drained nearly all WBNB from the pair.

TLDR by @Benthic

Explore the topic

Burn

AIDC burn bug lets attacker drain 220.12 WBNB from PancakeSwap pair by abusing sync()

Explore the topic

More on Burn

Aster directs 99% of daily fees to ASTER buybacks, matching each with reserve burns

Syscoin says bridge exploit released 5B SYS before attacker returned funds for burn

Solana draft SIMD-0553 targets 7,500-9,000 SOL/day burn with resource-based transaction fee

Five 2014-era Bitcoin addresses burn 107 BTC worth $8.2M in synchronized transfers

Solv Protocol is shutting down burn-mint permissions for SolvBTC assets across major chains, urging users to redeem and withdraw underlying assets before June ends

Circle expands CCTP to Stellar, enabling developers and institutions to move USDC across 23 blockchains using canonical burn-and-mint infrastructure

Aster directs 99% of daily fees to ASTER buybacks, matching each with reserve burns

Syscoin says bridge exploit released 5B SYS before attacker returned funds for burn

Solana draft SIMD-0553 targets 7,500-9,000 SOL/day burn with resource-based transaction fee

Five 2014-era Bitcoin addresses burn 107 BTC worth $8.2M in synchronized transfers

Solv Protocol is shutting down burn-mint permissions for SolvBTC assets across major chains, urging users to redeem and withdraw underlying assets before June ends

Circle expands CCTP to Stellar, enabling developers and institutions to move USDC across 23 blockchains using canonical burn-and-mint infrastructure

Total stats

How to Earn

AIDC burn bug lets attacker drain 220.12 WBNB from PancakeSwap pair by abusing sync()

Explore the topic

More on Burn

Aster directs 99% of daily fees to ASTER buybacks, matching each with reserve burns

Syscoin says bridge exploit released 5B SYS before attacker returned funds for burn

Solana draft SIMD-0553 targets 7,500-9,000 SOL/day burn with resource-based transaction fee

Five 2014-era Bitcoin addresses burn 107 BTC worth $8.2M in synchronized transfers

Solv Protocol is shutting down burn-mint permissions for SolvBTC assets across major chains, urging users to redeem and withdraw underlying assets before June ends

Circle expands CCTP to Stellar, enabling developers and institutions to move USDC across 23 blockchains using canonical burn-and-mint infrastructure

Aster directs 99% of daily fees to ASTER buybacks, matching each with reserve burns

Syscoin says bridge exploit released 5B SYS before attacker returned funds for burn

Solana draft SIMD-0553 targets 7,500-9,000 SOL/day burn with resource-based transaction fee

Five 2014-era Bitcoin addresses burn 107 BTC worth $8.2M in synchronized transfers

Solv Protocol is shutting down burn-mint permissions for SolvBTC assets across major chains, urging users to redeem and withdraw underlying assets before June ends

Circle expands CCTP to Stellar, enabling developers and institutions to move USDC across 23 blockchains using canonical burn-and-mint infrastructure

Comments

Total stats

How to Earn