## Arbitrum suffers a major exploit: Futureswap loses $395,000

The Futureswap platform on the Arbitrum network was targeted by a serious attack, resulting in hackers draining $395,000 in $USDC. Security systems from BlockSec Phalcon detected the suspicious activity in real-time, identifying malicious actions directed at the protocol's smart contract. The exploiters used an advanced combination of multiple operations to bypass security mechanisms and access the funds.

## How did the exploit attack on the smart contract unfold?

Blockchain analysis reveals a detailed sequence of attacker actions. Initially, the attacker invoked the "flashLoanSimple" function from Aave Pool V3, requesting a loan of 500 billion units of $USDC. This flash loan triggered a series of delegated calls through the "FlashLoanLogic" and "L2PoolInstance" modules, which ultimately transferred the funds to the attacker’s account.

Next, the attacker performed the "executeOperation" operation, receiving a flash loan along with a premium of nearly 250 million units. The exploit also involved multiple calls to "changePosition," allowing manipulation of the system’s settlement logic and extracting significant amounts of $USDC when closing positions. The entire operation relied on an unexpected behavior of the "stableBalance" variable during user position updates.

## DeFi security needs drastic improvements

The incident highlights a critical vulnerability in the contract infrastructure of DeFi platforms. The exploit exposed weaknesses in the verification of batch operations and gaps in security verification mechanisms. The Futureswap team is expected to publish an official statement and a plan of corrective actions soon.

Ongoing efforts are focused on developing comprehensive defensive solutions. This event serves as a reminder to the entire DeFi ecosystem of the necessity to implement more rigorous security protocols and transparent smart contract auditing processes.