ParaSwap Augustus V6 Contract Flaw and HECO Bridge Exploiter Transfers ~1K $ETH to TornadoCash

ParaSwap, a middleware for traders and decentralized applications, has identified a critical vulnerability in its Augustus V6 contract. The issue came to light after the platform discovered the flaw, prompting immediate action by pausing the V6 API and conducting a 'white hack' to secure funds for users at risk. These funds are now held in a Safe Wallet. Users who have approved the Augustus V6 contract are urged to revoke permissions immediately to protect their assets. In a related incident, the HECO Bridge exploiter transferred ~1K $ETH (worth ~$3.6M) to TornadoCash. This incident has drawn attention from various security firms, including PeckShieldAlert and BeosinAlert, which have issued warnings and instructions for users to revoke approvals. The vulnerability has raised concerns across the decentralized finance (DeFi) community, emphasizing the need for constant vigilance and security measures.