The creator of the token (Ayylmao, since the exploit/theft people have said he is a known serial scammer on Hedera formerly known in Discord community as 'bheing') said he's made a coinflip Dapp for his Sauceinu token (refer to screenshots uploaded of DMs). People who used it had to approve a very large allowance for the token they are playing with, and those who questioned how secure it was were told its very secure by him as hes done similar stuff on Etherium chain. He releases the Dapp a few days before his announcement that a new devleoper has joined their team (out of the blue, no one knew this, and he use to say to keep costs down, hes going to be the main developer). Then a couple weeks later anyone who connected and apporved allowance to play the game had all the tokens they approved stolen from their wallet exploiting the high allowance approval coded into the Dapp by Ayylmao (but Ayylmao fabricated a story that the new dev went behind his back and changed code to have that exploit and a 'taketoken' function added into the source code). After stealing the tookens from many people, the thief dumped/sold all tokens on Saucerswap for Hbar and then cashed out through Gate.io (this is where most of my losses have occurred as the dump has tanked the vlaue of the token and hence my remaning investmet held in another account). You can follow the transactions on Hashscan (he used 2 or 3 accounts to conduct the theft). The new dev has apparantly been doxxed by Ayy (within a day of the exploit and theft) as being someone by the name of Alberto Mira (not sure if this is a real person or an Alias of his - https://es.linkedin.com/in/alberto-mira-5089ba269 ). Ayylmao's story is that he gave Alberto an ultimatum to return the stolen USD value of the funds back to him so he can return it to the people affected. Which obviously never happened, and Ayylmao now says hes working with Spanish Authorities to find Alberto (even if Albertos Linkedin says hes working in the USA.....) Some people have been reimbursed by Ayylmao in the Sauceinu tokens they had stolen, but that does not equate to the USD value lost and stolen from them.

Hacks of vulnerable binance pools following disclosure.

All ETH send to unknown address without my approval

Balancer, an AMM-based DEX running on multiple chains including Ethereum, Optimism, and Fantom, was exploited on August 27, 2023. The attacker exploited the Balancer V2 liquidity pools in multiple transactions via a flashloan attack.

Star Token (STV) is a BEP20 token traded on PancakeSwap. On August 26, 2023, an attacker exploited a vulnerability in STV's unverified smart contract by manipulating the price.

EthereumHive, a project running on the Ethereum chain, was exploited on August 21, 2023, through a reentrancy attack. The attacker used a rewarding issue in the EHIVE token's smart contract which allowed stakes with zero amount. They created multiple contracts and staked 0 EHIVE tokens from each of them. By calling stake and unstake immediately in each contract, the attacker increased reward amounts, ultimately minting 744 million EHIVE tokens. These tokens were exchanged for over 9 ETH, equivalent to 15,569 USD. The stolen funds were deposited into TornadoCash.

bvbvbbbbbv

The attacker exploited a bug in a smart contract. The contract was designed to hold liquidity to enable a flash-loan based strategy for arbitraging the price of rocket ether between the rocket pool protocol price and the market price, involving swapping up to 32 rETH held by the contract for WETH via 1inch and minting new rETH to replenish the contract balance. There was a bug in the contract's check that the 32 rETH balance was fully replenished by the end of the transaction. The attacker created a fake liquidity pool and fake 1inch swap data to execute a swap with an extremely low price that drained the contract's liquidity returning only a tiny amount of WETH, and then abused the bug in the final check to ensure the transaction succeeded. The attacker also burned the rETH they drained with the rocket pool protocol to obtain approximately 34.6 ETH, which they then transferred over multiple transactions and addresses that can be traced to ultimately land in one of several exchanges including Binance, OKX, and KuCoin.

I played a new game that looksrare came out with called yolo I won and was paid eth but after my $1385 usdc was gone. Looksrare claims they don't ask for usdc permission so they claim it's not related to their site but it happened at same time and I didn't sign other contracts in weeks.

Suspicious Transaction happening on Tornado router. Leading to known exploiter.

The orbiter.finance is bridge. They was added new usdc contract the same day 11.08 or maybe a day before this day,for bridging to another chains! So the user want to bridge Usdc from the ZkSync Network to another chain Starknet ,but the Orbiter cross chain was under attack! As the attacker/s target was the cross chain, the user lost the USDC! 1. On June 1, 2023, the Discord server of Orbiter Finance was attacked, 2. On June 24, 2023, the Twitter account was attacked

A malicious address was given an unlimited token allowance. Zero Transfer Attacks I revoked the addresses.

MetaLabz -  Insufficient Function Access Control

0xd61492 - Insufficient Function Access Control