# LI.FI Protocol Hacked— $10 Million Stolen So Far *It was reported a severe security breach affecting the Li.fi protocol, with hackers draining close to $10 million. The exploit targets users with Unlimited approvals.* By [Nefture Security](https://paragraph.com/@nefture) · 2024-07-16 exploit, nefture --- * * * ![](https://storage.googleapis.com/papyrus_images/13bde0bb8e8e3c3d005bb3ffae16fc3c.png) #### **BREAKING:** [**Li.fi**](http://Li.fi) **Protocol Under Attack, $10 Million Compromised** ### Key Points: * [**Li.fi**](http://Li.fi) **protocol** exploited, resulting in nearly $10 million in losses. * We suspect a **Call injection attack** (unconfirmed) * **Immediate action**: Users with unlimited approvals should revoke them immediately. > **_Nefture has detected that LiFi protocol was being drained and alerted it’s users._** It was reported a severe security breach affecting the [**Li.fi**](http://Li.fi) protocol, with hackers draining close to $10 million. The exploit targets users with **Unlimited approvals.** ### What Happened? We believe a **call injection attack** is responsible for the drain. This type of attack allows hackers to insert malicious code that executes legitimate functions, giving them control over transactions and enabling the theft of funds. The exploit was confirmed by LIFI in this tweet: ![](https://storage.googleapis.com/papyrus_images/8076301f9fade9e2003da81f76c85a39.png) Source: [Twitter](https://x.com/lifiprotocol/status/1813207291778215955) ### Immediate Steps To Take for [LI.FI](http://LI.FI) Users: **Revoke all approvals for these addresses immediately:** * 0x1231deb6f5749ef6ce6943a275a1d3e7486f4eae * 0x341e94069f53234fE6DabeF707aD424830525715 * 0xDE1E598b81620773454588B85D6b5D4eEC32573e * 0x24ca98fB6972F5eE05f0dB00595c7f68D9FaFd68 Revoke your approvals on all the chains through [revoke.cash](http://revoke.cash) or other revoking tools. > **_Nefture advises all users to avoid interacting with any applications using the_** [**_Li.fi_**](http://Li.fi) **_protocol until the investigation is complete and revoke your approvals as soon as possible._** > **_Nefture is monitoring the situation closely and will alert users directly in case of any updates._** #### Stay updated by following us on [Twitter](https://x.com/Nefture/status/1813194667682369730)! * * * ### About us > [_Nefture_](https://nefture.com/) _is a_ **_Web3 real-time security and risk prevention platform_** _that detects on-chain vulnerabilities and protects digital assets, protocols and asset managers from significant losses or threats._ > _Nefture core services includes_ **_Real-Time Transaction Security_** _and a_ **_Threat Monitoring Platform_** _that provides accurate exploits detections and fully customized alerts covering hundreds of risk types with a clear expertise in DeFi._ > _Today, Nefture proudly collaborates with leading projects and asset managers, providing them with unparalleled security solutions._ > **_Book a meeting_** 🤝 [**_Nefture Calendly_**](https://calendly.com/d/ck6x-jrk-zkk/meeting-with-nefture?month=2024-05) --- *Originally published on [Nefture Security](https://paragraph.com/@nefture/lifiexploit)*