According to Decurity's post-mortem report, after 1inch negotiated with the hackers, most of the $5 million stolen by the attack has been returned, and the hackers have kept a portion as bug bounties. The attack stemmed from a vulnerability in the Fusion v1 smart contract and was primarily affected by the use of an outdated version of the parser, leaving ordinary user funds unaffected.
As previously reported by Odaily, 1inch discovered a vulnerability in the Fusion v1 smart contract on March 5, which hackers exploited to steal funds. 1inch has called on the relevant parsers to immediately audit and update the contract to prevent similar incidents from happening again.
The content is for reference only, not a solicitation or offer. No investment, tax, or legal advice provided. See Disclaimer for more risks disclosure.
Most of the funds have been returned after the hack of 1inch, and the two parties have reached a bug bounty agreement
According to Decurity's post-mortem report, after 1inch negotiated with the hackers, most of the $5 million stolen by the attack has been returned, and the hackers have kept a portion as bug bounties. The attack stemmed from a vulnerability in the Fusion v1 smart contract and was primarily affected by the use of an outdated version of the parser, leaving ordinary user funds unaffected. As previously reported by Odaily, 1inch discovered a vulnerability in the Fusion v1 smart contract on March 5, which hackers exploited to steal funds. 1inch has called on the relevant parsers to immediately audit and update the contract to prevent similar incidents from happening again.