Fraudsters are trying to empty the community pool of the Mirror Protocol project through the on-chain voting system, CertiK said. The cybercriminals published a series of proposals, if accepted, MIR tokens worth more than $ 111 million will be sent to their addresses.
The @terra_money ‘s @mirror_protocol is under governance attack. The attacker is flooding a series of fake polls to confuse the community. The scam proposals are 185,198,204,206,207,208. Please vote NO to these proposals.
– CertiK Security Leaderboard (@certikorg) December 25, 2021
The Mirror Protocol is designed to issue synthetic assets on the Terra blockchain. These are tokenized versions of traditional market instruments like stocks and bonds.
The MIR governance token allows users to submit proposals for improving the protocol and vote on their approval.
Latest fraudulent offer – “Freeze community pool in case of breach” – registered number 211. If the attacker manages to get the majority [12 — topple] votes, 25 million MIR will allegedly be sent to his address (~ $ 65.75 million at the exchange rate at the time of writing).
Voting on this proposal will end on January 1, 2022.
Community members discovered six more similar polls on the project management page. Potentially, attackers can get over 45 million MIR.
“Judging by the coordinated actions and the large sums that these individuals have at their disposal, it seems that these are not random attackers, but a group of wealthy people or organizations with large assets,” wrote user yd19.
The Mirror Protocol team has yet to comment on the situation.
Recall that in 2021, scammers stole more than $ 7.7 billion in cryptocurrencies from users, according to Chainalysis. More than a third of this amount was accounted for by schemes rug pull.