Socket, an interoperability protocol, has temporarily paused its contracts following a security breach in its Bungee bridging aggregator, leading to a theft of around $6 million. The issue, identified by researcher Spreek, involved wallets with infinite approvals to Socket contracts. PeckShield, a blockchain security firm, attributed the exploit to insufficient validation of user input. The attack, which lasted just over an hour, targeted users with excess approvals, allowing the theft of unutilized funds. Socket is actively working on resolving the issue and has promised regular updates.
