The decentralized finance platform UwU Lend has fallen victim to another attack by the same hacker, resulting in the theft of $3.7 million in funds. This is the second time the Ethereum-based lending and liquidity protocol has been exploited by the attacker, who previously stole nearly $20 million.
Cyvers Alerts data reveals that the hacker targeted liquidity pools holding uDAI, uWETH, uLUSD, uFRAX, uCRVUSD, and uUSDT, converting all stolen assets to ETH and storing them in their address. A user named @CryptoEvgen pointed out that the attacker used funds from the first hack for this latest attack. The cause of this new incident is still unknown, and UwU Lend has not released a public statement regarding the breach.
Just days after losing $20 million in a previous hack described as a “sophisticated attack,” UwU Lend has once again suffered a significant loss. Reports suggest that the attacker utilized Curve LlamaLend as the exit liquidity for the attack. Founded by Michael Patryn, also known as Omar Dhanani or “0xSifu,” UwU Lend is based on the AAVE v2 code and offers lending, borrowing, and staking services, rewarding users with its native token, UwU.