A ‘warden’ of the platform discovered that an attacker could mint massive amounts of tokens by forcing token prices to diverge from their oracle prices.
Decentralized auditing platform Code4rena discovered an exploit in an upcoming patch of the DittoETH algorithmic stablecoin platform. The exploit would have allowed a user with a large amount of tokens deposited to make excessive profits, increasing bad debts in the protocol and ultimately compromising its ability to survive.
The discovery means that the vulnerability will not be added to the production version of DittoETH, as it has been removed through mitigation in a newer test version.
Block, a talent scout for Web3 education company Rare Skills, reported the discovery on X.
