According to the Beosin EagleEye security risk monitoring, early warning and blocking platform monitoring of the blockchain security audit company Beosin, on March 19, 2023, it was found that the Harvest_Keeper project had maliciously transferred user funds, involving an amount of about 933,000 US dollars. The Beosin security team discovered through on-chain data that the attacker used the owner authority to transfer the USDT mortgaged by the user in the HarvestKeeper contract by calling the getAmount function, and then the attacker used the user's token authorization to the EOA (0x250...c14) account to multiple If the user funds are transferred through this EOA for the first time, the user is advised to cancel the authorization of this EOA. The stolen funds are currently stored in multiple addresses, most of which are stored in 0x92288f964ae8fce23e8d337422ad66eefc333670. Stolen funds will be continuously monitored by Beosin Trace.