OneRing Finance OShares contact was exploited for losses of ~$1.5M in a flash loan attack. The attack started on Fantom, before the stolen funds were moved to Ethereum.
The attacker laundered the funds through Tornado.cash.
Attack Address: 0x12EfeD3512EA7b76F79BcdE4a387216C7bcE905e
Attack Contract: 0x6A6d593ED7458B8213fa71F1adc4A9E5fD0B5A58