Vulnerability in PancakeSwap BCE/USDT pool exploited for $680K

A vulnerability in the BCE/USDT pool on PancakeSwap (CAKE), a decentralized exchange (DEX) based on the BNB Chain, has been exploited, resulting in a loss of $679,000, according to blockchain security firm Blocksec. The investigation found that the hacker deployed two malicious contracts to bypass buy and sell limits. These contracts triggered a token burn mechanism within the pool, distorting its holdings and allowing the attacker to drain the assets.