amps

Last night, a malicious actor took an advantage of an exploit in the Amps contract code to withdraw USDC from some of our users' wallets.

The exploit has been patched, affected users have been contacted and refunded, and we are working on publishing a full post-mortem.

No additional funds are at risk and neither signers nor wallet permissions are at risk.

Thank you for your attention to this matter!

Elevating onchain creators 

@nodefoundation @brightmoments 
@ampsfun

Just curious, why wasn’t the exploit identified during the smart contract audit? Can you share more details on the nature of the exploit?