$10 000 USD
DESCRIPTION OF EVENTS
"Tomatos Finance claims to be an experiment in using farming to bring stablecoins and potential token closer to farmers."
"Hacker triggered simple permission granting and withdrew tokens."
"A user was stolen 10,000 DAI due to Tomatoes.finance. It is understood that the main method of the scam is to induce users to approve permission by airdrop."
"[M]any others fell victim to these rug pulls or similar scams in other projects like Tomatoes.finance."
"The newsletter indicates that a hacker would have triggered a simple authorization and removed tokens. News.bitcoin.com observed that since September 23, there has been no activity on its Medium page."
"Users who receive tokens from the DeFi project tomatoes.finance during the airdrop may face the threat of asset loss. The Telegram channel DeFi Leaks issued a warning."
"Warning from DeFi Leaks: If you receive the token in your wallet, please do not visit its website and finally approve any contract. It seems that through the approval of the website, their contract permissions can steal your tokens."
"The developers of the Tomatos.finance project are expected to make a lot of hype in the DeFi field. They encourage users to participate in profitable agriculture by providing liquidity."
"When they visit the site, the potential victim can grant permission to trigger the withdrawal of the token to the third-party address."
"At the time of writing, the site and the tomatoes.finance medium account are not yet available."
The "Tomatos" Finance project gained publicity by airdropping tokens into random wallets. When the victim reached the website, they would receive a standard permissions dialog to interact with the smart contract. If they granted permissions, all their funds would be drained.
HOW COULD THIS HAVE BEEN PREVENTED?
The general open and permissionless nature of the blockchain trains many people to not to check the legitimacy of any website or application. Many users join with no education, and have no assistance available when they fall victim to any exploit.
List of Defi scams (Jul 12)
Newsletter #11 (Jul 12)
12 Defi Con Artists Exposed – Are Rug Pulling Incidents Threatening the Future of Defi ? – Bitcoin worldReport (Jul 24)
A User Stolen 10000 DAI Due To Tomatoes.finance | CoinNess (Aug 23)
Defi Summer The Defi Rug (Aug 23)
Tomato Swap (Aug 23)
tomatos.finance (TOMATOS) Token Tracker | Etherscan (Aug 23)
tomatos.finance (TOMATOS) Price, Charts, News - Crypto Pro (Aug 23)
Trades for tomatos.finance token (Aug 23)
tomatos.finance (TOMATOS) Price History | wallmine (Aug 23)
Telegram: Contact @tomatosfinance (Aug 23)
西红柿中毒：Tomatoes.finance的DeFi协议原来是骗局 - 0x资讯 (Aug 23)