Foom.Cash security protocol, built on Ethereum, was recently exploited due to a cryptographic verification vulnerability, causing estimated damages of $2.26 million. The attack affected contracts on both Ethereum and Base, resulting in the loss of over 24.28 trillion FOOM tokens. A transaction on Base caused a loss of approximately $427,000, while transactions on Ethereum worth $1.83 million are believed to be “white-hat” efforts to recover assets.
According to GoPlus Security, misconfigured verification keys allowed attackers to impersonate zkSNARK proofs. Certik and BlockSec described this as a “copycat” attack similar to the previous Veil Cash incident. Although promoted as an upgrade of Tornado Cash, Foom.Cash has not issued an official response or remediation plan.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
ZetaChain GatewayEVM Contract Exploited, Cross-Chain Transactions Halted
Gate News message, April 27 — ZetaChain announced that its GatewayEVM contract was exploited on April 28, affecting only internal team wallets. The team has sealed off the attack vector to prevent further fund loss, and no user funds were impacted by the incident.
As a precautionary measure, ZetaCh
GateNews32m ago
Deepfake Call Tricks Cardano Dev, Exposes New Weak Spot
A Cardano developer says a realistic AI deepfake video call led to a laptop breach, a reminder that the next wave of crypto attacks may start with faces and voices rather than smart contracts.
The warning, shared with the Cardano community, describes an incident in which an impostor used
DailyCoin9h ago
French Prosecutors Charge 88 in Crypto Wrench Attack Ring
French authorities have charged 88 individuals, including 10 minors, in connection with kidnappings and extortions targeting cryptocurrency owners, according to a statement from the National Public Prosecutor's Office for Organized Crime (PNACO) released Friday. The charges are tied to 12 ongoing
CryptoFrontier11h ago
When DeFi is too slow for young people and too risky for old money: are we all using Treasury bond interest to shoulder junk bond risk?
DeFi once attracted young people with five-figure APY rates, but it is now seen as overpriced and carrying too much risk. Over the past year, more than $1.62 billion has been stolen, and at one point Aave’s interest rate spiked to 12.4%. The fair yield is about 12.55%, with a retail entry threshold of 18%. Institutional players prefer “strategy-isolated vaults” to reduce tail risk. Conclusion: high leverage is no longer in; in the future, we’ll need higher-risk pricing and insurance tools to accommodate both young people and old money.
ChainNewsAbmedia15h ago
Robinhood Warns of Phishing Emails Sent to Some Customers
Gate News message, April 27 — Robinhood alerted users on social media that some customers received fraudulent emails last Sunday evening claiming to be from noreply@robinhood.com with the subject line "Your recent login to Robinhood."
The phishing attempt stemmed from misuse of the account
GateNews15h ago
Websea Crypto Exchange Faces Suspected Exit Scam, Withdrawal Channels Closed
Gate News message, April 27 — Crypto trading platform Websea has suspended withdrawals and closed its C2C (peer-to-peer) channels, with multiple users reporting the exchange appears to have conducted an exit scam. The platform initially restricted withdrawals before completely shutting down the C2C
GateNews16h ago
