Harvest

It is reported that on March 19, 2023, Harvest was discovered according to monitoring by the blockchain security audit company Beosin_ Keeper project has maliciously transferred user funds, involving an amount of approximately 933000 US dollars. The Beosin security team discovered through on-chain data that an attacker used owner privileges to transfer the USDT pledged by the user in the HarvestKeeper contract by calling the getAmount function. Subsequently, the attacker utilized the user’s token authorization for the EOA (0x250… c14) account, thereby transferring user funds through the EOA multiple times. It is recommended that the user cancel the authorization for the EOA. Currently, the stolen funds are stored in multiple addresses, most of which are stored in 0x92288f964ae8fce23e8d337422ad66eefc333670. Security company: Harvest_ Keeper project has maliciously transferred user funds, involving an amount of approximately 933000 US dollars Analysis based on this information:On March 19, 2023, the Harvest project became the target of a malicious transfer of user funds. According to monitoring…