Resupply: Hack causes approximately $10,000,000 reUSD in bad debt; stolen funds remain on-chain

Resupply has released a hack analysis report, which states that the attack on Resupply's crvUSD-wstUSR trading pair resulted in approximately $10,000,000 in reUSD bad debt. However, the vulnerability only exists in specific token trading pairs, and other token trading pairs are not affected. The Resupply market is operating as usual. Currently, the debt limit for the affected token trading pair has been set to 0 and insurance pool withdrawals have been suspended, requiring a formal governance vote to lift the suspension. Resupply noted that the problematic code segment has undergone multiple security audits, and independent researchers were hired to review the codebase, but no one reported the issue. At this stage, the stolen funds are still on-chain, and the situation is being monitored and necessary measures will be taken. [ChainCatcher]