AstraSec

Aave V4 was built security-first, with layered security controls from early architecture through post-audit fix validation. We’ve published a full transparency report on the Aave V4 security program. Read it below.

Hello, this is the waveX Team. On December 6, we detected an abnormal transaction that made use of a vulnerability within part of our protocol logic. We immediately initiated a thorough investigation and mitigation procedure. We sincerely apologize for the delay in issuing this update, as we prioritized verifying the facts accurately and establishing proper measures to prevent recurrence. The impact was limited to approximately $430k after the prompt response. This issue was contained strictly within the vault-related contracts, and staking contracts and other components were not affected. waveX will fully compensate the entire loss amount. A detailed recovery plan and compensation schedule will be shared in a separate announcement shortly. Following the event, we conducted a comprehensive inspection across the protocol, which required temporarily restricting certain functionalities. The withdrawal feature for users is currently being prepared for reactivation and is scheduled to resume on Tuesday, December 16. We will provide a detailed update once it goes live. Based on the findings, we are significantly strengthening our security measures and overall defense mechanisms. We are also preparing an upgraded version of the protocol to provide a safer and more robust operating environment. All related timelines and progress updates will continue to be communicated transparently. waveX has always placed transparency and user protection as our highest priority. We are carefully coordinating internal communications to ensure that every member of our community receives clear and consistent information, and we remain fully committed to restoring your trust. Thank you for your continued support. We will return as an even safer and more resilient waveX. — waveX Team