Bitcoin
Bitcoin (BTC)
$91,498.00 -2.64768
Bitcoin price
Ethereum
Ethereum (ETH)
$3,115.15 -3.93181
Ethereum price
BNB
BNB (BNB)
$666.19 -3.59216
BNB price
Solana
Solana (SOL)
$178.51 -4.0544
Solana price
XRP
XRP (XRP)
$2.42 -2.6032
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000203 -6.26023
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000165 -6.24929
Pepe price
Bonk
Bonk (BONK)
$0.0000254 -8.13404
Bonk price
dogwifhat
dogwifhat (WIF)
$1.44 -6.33804
dogwifhat price
Popcat
Popcat (POPCAT)
$0.530302 -5.14058
Popcat price
Bitcoin
Bitcoin (BTC)
$91,498.00 -2.64768
Bitcoin price
Ethereum
Ethereum (ETH)
$3,115.15 -3.93181
Ethereum price
BNB
BNB (BNB)
$666.19 -3.59216
BNB price
Solana
Solana (SOL)
$178.51 -4.0544
Solana price
XRP
XRP (XRP)
$2.42 -2.6032
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000203 -6.26023
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000165 -6.24929
Pepe price
Bonk
Bonk (BONK)
$0.0000254 -8.13404
Bonk price
dogwifhat
dogwifhat (WIF)
$1.44 -6.33804
dogwifhat price
Popcat
Popcat (POPCAT)
$0.530302 -5.14058
Popcat price
Bitcoin
Bitcoin (BTC)
$91,498.00 -2.64768
Bitcoin price
Ethereum
Ethereum (ETH)
$3,115.15 -3.93181
Ethereum price
BNB
BNB (BNB)
$666.19 -3.59216
BNB price
Solana
Solana (SOL)
$178.51 -4.0544
Solana price
XRP
XRP (XRP)
$2.42 -2.6032
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000203 -6.26023
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000165 -6.24929
Pepe price
Bonk
Bonk (BONK)
$0.0000254 -8.13404
Bonk price
dogwifhat
dogwifhat (WIF)
$1.44 -6.33804
dogwifhat price
Popcat
Popcat (POPCAT)
$0.530302 -5.14058
Popcat price
Bitcoin
Bitcoin (BTC)
$91,498.00 -2.64768
Bitcoin price
Ethereum
Ethereum (ETH)
$3,115.15 -3.93181
Ethereum price
BNB
BNB (BNB)
$666.19 -3.59216
BNB price
Solana
Solana (SOL)
$178.51 -4.0544
Solana price
XRP
XRP (XRP)
$2.42 -2.6032
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000203 -6.26023
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000165 -6.24929
Pepe price
Bonk
Bonk (BONK)
$0.0000254 -8.13404
Bonk price
dogwifhat
dogwifhat (WIF)
$1.44 -6.33804
dogwifhat price
Popcat
Popcat (POPCAT)
$0.530302 -5.14058
Popcat price

Trader Joe suffers breach, urges users to take action

trader-joe-suffers-breach-urges-users-to-take-action
Edited by
News
Trader Joe suffers breach, urges users to take action

Trader Joe has swiftly addressed a vulnerability in its analytics plugin, advising users to revoke access to a suspicious contract and restore safety.

The popular decentralized exchange (DEX) Trader Joe, on Nov. 17 announced a security breach in its frontend interface. 

The breach, identified in a third-party analytics plugin, potentially put numerous users at risk, leading to immediate action by the platform’s team.

https://twitter.com/TraderJoe_xyz/status/1725628622524883448

Breach detection and immediate response

According to the Trader Joe team, they discovered the vulnerability during a routine check, which revealed compromised JavaScript code in a third-party analytics tool. 

https://twitter.com/TraderJoe_xyz/status/1725667652054507885

The breach reportedly occurred at approximately 18:34 GMT, affecting all chains, including Avalanche (AVAX), Arbitrum (ARB), and Ethereum (ETH). 

However, the team swiftly removed the malicious code and temporarily shut down the frontend to prevent further risks.

The incident led to some users’ transactions being rerouted to an unknown contract, specifically identified as “0xd8ea07f43bc5045ec49ab52a3da2d0bf533581bf”. It prompted an urgent advisory for users who had interacted with the DEX after the breach to revoke any access given to this contract.

Steps for users to safeguard assets

In response to the breach, Trader Joe advised its users to check and revoke approvals of the malicious contract. 

The DEX directed users to use various tools, including token approval checkers on SnowTrace, Arbiscan, and BSCScan, as well as the Rabby Wallet’s Approval Centre and revoke.cash. 

https://twitter.com/TraderJoe_xyz/status/1725635614005936263

Users could also search for the affected contract address and revoke its access by entering their wallet addresses or connecting their wallets to the suggested services.

Moreover, the DEX emphasized the importance of confirming contract addresses during transactions, directing users to their developer documents for verified and safe contract addresses. 

Additionally, the Trader Joe Discord channel was made available for guided support, although with an advisory on potential delays in response.

Current status and moving forward

Following thorough investigation and remediation measures, Trader Joe has restored its frontend, assuring users that it is safe for all activities, including trading, liquidity, staking, and lending. 

https://twitter.com/TraderJoe_xyz/status/1725688000187658374

The DEX reassured users that there are no other third-party integrations or solutions in use, aiming to prevent similar vulnerabilities in the future.

The breach is the latest incident to affect Trader Joe. In October, the DEX was slapped with a lawsuit by a similarly named grocery retailer alleging trademark infringement and brand dilution. 

The lawsuit targeted the platform as well as its founder Cheng Chieh Liu for deliberately fashioning the DEX to evoke the popular Trader Joe’s brand, an American grocery chain with 560 stores across the United States.

Read more about

Rexas Finance Presale

  • RWA Ecosystem
  • Certik Audited
  • Raised Above $35,000,000
  • 40,000+ Holders
  • 100,000+ Community