{"id":56062,"date":"2022-01-17T20:29:38","date_gmt":"2022-01-17T18:29:38","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=56062"},"modified":"2025-09-04T04:35:16","modified_gmt":"2025-09-04T01:35:16","slug":"multichain-cross-chain-protocol-fixes-critical-vulnerability","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/multichain-cross-chain-protocol-fixes-critical-vulnerability\/","title":{"rendered":"Multichain cross-chain protocol fixes critical vulnerability"},"content":{"rendered":"<p>The developers of the cross-chain protocol Multichain (formerly Anyswap) said they identified and fixed a vulnerability affecting six tokens: WETH, PERI, OMT, WBNB, MATIC and AVAX.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">1\/A critical vulnerability that affected 6 tokens (WETH, PERI, OMT, WBNB, MATIC, AVAX) has been reported and fixed. <\/p>\n<p>All assets on both V2 Bridge and V3 Router are safe, and cross-chain transactions can be done safely.<\/p>\n<p>More info\ud83d\udc47<a href=\"https:\/\/t.co\/Mm6yWMwlCS\">https:\/\/t.co\/Mm6yWMwlCS<\/a><\/p>\n<p>\u2014 Multichain (Previously Anyswap) (@MultichainOrg) <a href=\"https:\/\/twitter.com\/MultichainOrg\/status\/1483110393543544832?ref_src=twsrc%5Etfw\">January 17, 2022<\/a><\/p><\/blockquote>\n<p> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>According to the developers, the issue was discovered by the security firm Dedaub. Multichain urged those who had approved any of the listed tokens to revoke their approvals. Otherwise their funds are at risk.<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cNo action is required from other users. [\u2026] All cross-chain transactions are safe,\u201d the statement said.<\/p>\n<\/blockquote>\n<p>The developers promised to disclose technical details of the incident later.<\/p>\n<div class=\"wp-block-text-wrappers-update-2 article_update\"><time class=\"gtb_text-wrappers_update_time\">January 18, 2022 | 12:31<\/time><span class=\"gtb_text-wrappers_update_head\">Update: <\/span><\/p>\n<p>According to PeckShield, unknown actors exploited the exploit. The address cited by analysts contains more than 450 ETH (~$1.4m at the time of writing).<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Stolen funds are currently held at this address, more than 450 Ether (~$1.34m)<a href=\"https:\/\/t.co\/I8H6YXURBM\">https:\/\/t.co\/I8H6YXURBM<\/a><\/p>\n<p>\u2014 PeckShieldAlert (@PeckShieldAlert) <a href=\"https:\/\/twitter.com\/PeckShieldAlert\/status\/1483363515411099651?ref_src=twsrc%5Etfw\">January 18, 2022<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<div class=\"wp-block-text-wrappers-update-2 article_update\"><time class=\"gtb_text-wrappers_update_time\">January 18, 2022 | 12:55<\/time><span class=\"gtb_text-wrappers_update_head\">Update: <\/span><\/p>\n<p>Multichain said that 445 users were affected by the attackers\u2019 actions. Project representatives urged following the previously published instructions to keep funds safe.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">\u26a0\ufe0f\u26a0\ufe0fUsers haven&#8217;t revoked weth approval are currently being exploited (445weth total affected)! Remove approvals here: <a href=\"https:\/\/t.co\/S9nDfrtS0G\">https:\/\/t.co\/S9nDfrtS0G<\/a> , as per yesterday&#8217;s instructions (<a href=\"https:\/\/t.co\/CBD4AdgzI6\">https:\/\/t.co\/CBD4AdgzI6<\/a>), to be sure your funds are safe.<\/p>\n<p>\u2014 Multichain (Previously Anyswap) (@MultichainOrg) <a href=\"https:\/\/twitter.com\/MultichainOrg\/status\/1483375758382825477?ref_src=twsrc%5Etfw\">January 18, 2022<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<\/div>\n<\/div>\n<p>As a reminder, in December 2021 <a href=\"https:\/\/u1f987.com\/en\/news\/multichain-cross-chain-protocol-raises-60-million-from-binance-labs-circle-ventures-and-tron-foundation\">Multichain raised $60m<\/a> from Binance Labs, Circle Ventures and the Tron Foundation.<\/p>\n<p>Follow ForkLog news on <a href=\"https:\/\/vk.com\/forklogcom\" target=\"_blank\" rel=\"nofollow noopener\">VK<\/a>!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Developers of the cross-chain protocol Multichain (formerly Anyswap) reported the discovery and fix of a vulnerability affecting six tokens: WETH, PERI, OMT, WBNB, MATIC and AVAX.<\/p>\n","protected":false},"author":1,"featured_media":56063,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"Multichain (formerly Anyswap) fixes a critical vulnerability affecting six tokens.","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1301,1210,2277],"class_list":["post-56062","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-blockchain-vulnerabilities","tag-cross-chain-protocols","tag-multichain"],"aioseo_notices":[],"amp_enabled":true,"views":"33","promo_type":"1","layout_type":"1","short_excerpt":"Multichain (formerly Anyswap) fixes a critical vulnerability affecting six tokens.","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/56062","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=56062"}],"version-history":[{"count":1,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/56062\/revisions"}],"predecessor-version":[{"id":56064,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/56062\/revisions\/56064"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/56063"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=56062"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=56062"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=56062"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}