PeckShield: StakeDAO contract has an unlimited minting vulnerability; attackers have already transferred some assets to Ethereum.

CoinFeed reported on May 27th that, according to PeckShield, an anomaly occurred in the StakeDAO-related contract on Arbitrum, resulting in the minting of 5.4 trillion vsdCRV. The security team has characterized this as a suspected unlimited minting exploit. The attackers have exchanged some of the vsdCRV for approximately 43.781 ETH (about $91,000) and transferred it to the Ethereum address 0xeF3C…aa25 via a cross-chain bridge.