Velocore posted on the X platform: We have identified the root cause and taken measures to prevent copycats from using the same method (to attack). We are coordinating with other security partners to determine the appropriate time to publish a post-mortem article.
In the meantime, all buttons except "withdraw" have been disabled. The Telos side is not affected and will be restored after the post-mortem article is published. "
Earlier news, zkSync and Linea on-chain veDEX Velocore posted on the X platform to confirm that its protocol has been attacked, resulting in the loss of most liquidity. The CPMM pool of its protocol has been affected, but the stable pool has not been affected, so funds can be withdrawn from its stable pool. In addition, the Velocore team is working with the security team and the foundation, and has asked CEX to freeze the stolen assets. Velocore will continue to take all necessary measures to work hard to resolve this issue.
Later, Velocore posted on the X platform: "We have identified the vulnerability exploit mechanism and are establishing an on-chain negotiation process. A post-mortem article is in preparation. We use the clues left by it to track the exploiter. More updates are coming soon. Velocore on the Telos mainnet is not affected and we are working with the Foundation during this feature freeze. We will provide guidance in the future on how to safely withdraw all funds.”