The yield farming app was exploited through a possible private key compromise, according to a CertiK report.
Yield farming protocol Mozaic Finance was exploited on March 15 on the Abitrum network, according to a statement from the protocol’s development team. The team claims that the attacker has deposited all the stolen funds to centralized crypto exchange MEXC and is “confident” the funds will be returned.
Mozaic Finance is a decentralized finance and yield-optimization protocol that runs on several different blockchain networks. It claims to employ artificial intelligence (AI) programs to maximize returns to investors.
Blockchain security firm CertiK posted an alert on X, stating that the exploit had occurred. In an accompanying report received by Cointelegraph, CertiK claimed that the attacker drained funds by calling the “bridgeViaLifi” contract, which is only callable by a developer wallet. Thus “the root cause of this incident appears to be a private key compromise,” CertiK concluded.