➕ Add TrustSwap Attack

Signed-off-by: Pascal Marco Caversaccio <[email protected]>
pcaversaccio · Nov 1, 2024 · f51794b · f51794b
1 parent f13b05c
commit f51794b
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/README.md b/README.md
@@ -92,6 +92,7 @@ A chronological and (hopefully) complete list of reentrancy attacks to date.
 - [Lien attack](https://x.com/AnciliaInc/status/1827105669163647315) – 23 August 2024 | [Victim contract](https://etherscan.io/address/0xE446158503d0F5c70579FCCE774C00E8Db544559), [Exploit contract](https://etherscan.io/address/0x91956649064836F37B8DfaF89599117A49FFf295), [Exploit transaction](https://etherscan.io/tx/0xaa7e6050a6b0f371e4b1ea7f7677443ef77bda224425253c458d6da90f54d81e)
 - [Pythia attack](https://x.com/quillaudits_ai/status/1830976830607892649) – 3 September 2024 | [Victim contract](https://etherscan.io/address/0xe2910b29252F97bb6F3Cc5E66BfA0551821C7461), [Exploit contract](https://etherscan.io/address/0x542533536e314180E1B9f00b2c046f6282eb3647), [Exploit transaction](https://etherscan.io/tx/0xee5a17a81800a9493e03164673ac0428347d246aa30cdb124b647787faaabbea)
 - [Penpie attack](https://blog.penpiexyz.io/penpie-post-mortem-report-1ac9863b663a) – 3 September 2024 | [Victim contract](https://etherscan.io/address/0x6E799758CEE75DAe3d84e09D40dc416eCf713652), [Exploit contract](https://etherscan.io/address/0x4aF4C234B8CB6e060797e87AFB724cfb1d320Bb7), [Exploit transaction](https://etherscan.io/tx/0x56e09abb35ff12271fdb38ff8a23e4d4a7396844426a94c4d3af2e8b7a0a2813)[^10]
+- [TrustSwap attack](https://github.com/trustswap/teamfinance-stakingpool/blob/main/audit-reports/Bailsec%20-%20Trustswap%20-%20Post%20Mortem%20-%20Final%20Report%20.pdf) – 30 September 2024 | [Victim contract](https://etherscan.io/address/0xd6A07b8065f9e8386A9a5bBA6A754a10A9CD1074), [Exploit contract](https://etherscan.io/address/0x15716E4ec8BD864eFD6dD0927De7e8b180349198), [Exploit transaction](https://etherscan.io/tx/0x83952d998cc562f40d0a58b76d563a16f3064ddb116e7b1b4e40298ca80499b8)
 
 > Some of the exploits carried out involve multiple separate transactions as well as multiple victim and exploit contracts. For each attack, I have listed the most affected victim contract, the most critical exploit contract, and the most devastating exploit transaction.