The lending app was drained of funds using a “read-only reentrancy” bug, a type of vulnerability that is often difficult for auditors to spot.

usdc+, era lend, zksync, hack, exploit, read-only reentrancyRead More

You might also be interested in reading Canada’s Anti-Money Laundering Watchdog, Fintrac, Levies Record $126M Fine on Cryptomus.