A flashloan attacker executed a theft of funds (~ more than $700,000) from the USDC, USDT and DAI vaults of http://Plouto.finance last Friday.
After two days of investigation and sorting, we assessed the loss and found some information about the attacker:
The attacker’s address: https://etherscan.io/address/0x43c16293f319f424A6B277115A4A9Eb2Dbc327d1
Transaction hash: 0xb4dd46d5d85a1b04fa4af30efaa57fab98ea03ae19de46aaf215706fd120af44
The other vaults are safe and have not been attacked.
We are so sorry that this happened. Some community members are acting as collateral damage, so we humbly request the attacker to return funds to the deployer, where it will be distributed back to the users in its entirety.
If anyone has clues about the attacker and can help to return the funds, please contact us and we will give you a bounty as you wish.
