On May 28, @Corkprotocol suffered an exploit, resulting in losses exceeding 12 million. According to @SlowMist_Team’s analysis, the root cause lies in two key issues: 1️⃣Cork allows users to create markets with arbitrary redemption assets (RA) through the CorkConfig contract, which enabled the attacker to set DS as the RA. 2️⃣The beforeSwap function in the CorkHook contract could be called by any user without authorization, along with custom hook data for CorkCall. ⚠️This allowed the attacker to manipulate the protocol by depositing valid DS tokens from a legitimate market into a new market as RA, in return for the corresponding DS and CT tokens. 🧐Our full analysis details the attack method and fund movements: https://slowmist.medium.com/exploit-analysis-cork-protocol-attacked-over-10-million-lost-75de9f229307