blockworks.co
DeFi protocol Kyber Network announced a “potential vulnerability” on its automated market maker (AMM) platform KyberSwap Elastic on Monday.
While there is relatively little information on the current issue, difficulties may have arisen after a user named Zal encountered an error while withdrawing single-sided liquidity from the platform. After the user posted screenshots of their issue to the Kyber discord, team member Michael_E responded saying, “Your Lp must have gone out [of] range and sold to one of the [tokens] you used in adding liquidity.”
Shortly thereafter, the team took to Twitter to announce that it had temporarily taken all of Elastic’s liquidity pools offline in order to address the vulnerability. The company tweeted that it is investigating, and reassured participants that “no user funds are lost.”
1/2
— Kyber Network (@KyberNetwork) April 17, 2023
Attention KyberSwap Elastic Liquidity Providers:
We have identified a potential vulnerability, and as a precaution we strongly advise all Liquidity Providers to withdraw your funds on Elastic as soon as possible.
Investigations are ongoing and no user funds are lost.
Kyber also strongly advised liquidity providers to “withdraw your funds on Elastic as soon as possible.”
KyberSwap Classic, the company’s original liquidity protocol, was not affected by the potential exploit.
Blockworks previously reported that KyberSwap suffered a $265,000 hack in September 2022 that Binance helped to unravel. At the time, KyberSwap offered a 15% bounty to the hacker, amounting to around $40,000, if they returned the money.
Kyber Network did not respond to questions by time of publication.