New EIP712 Messages in Blur Protocol Expose Users to Phishing Attacks

In a concerning development, the popular decentralized finance protocol, @blur_io’s Blend Protocol, has recently introduced two new EIP712 messages called “Seller” and “LoanOffer.” While these additions were intended to enhance the functionality of the protocol, security experts have discovered potential phishing exploits that could lead to significant financial losses for unsuspecting users.

1/ The @blur_io‘s Blend Protocol has been online for a while, the protocol introduces two new EIP712 messages, 𝐒𝐞𝐥𝐥𝐎𝐟𝐟𝐞𝐫 and 𝗟𝗼𝗮𝗻𝗢𝗳𝗳𝗲𝗿.

But you should be aware of potential phishing exploits based on those two types of messages! pic.twitter.com/jbAg0ueN6x

— Scam Sniffer (@realScamSniffer) June 11, 2023

The newfound vulnerabilities arise from the ability of bad actors to exploit these messages by constructing malicious loan offers or suspicious sale offers. By leveraging the seller message, an attacker could create a deceptive loan offer tied to a worthless NFT. If a user unsuspectingly signs this malicious loan offer, they will unknowingly part with their Blur ETH, resulting in the loss of their valuable assets.

2/ 𝗟𝗼𝗮𝗻𝗢𝗳𝗳𝗲𝗿

obviously, the bad actor can based on this construct a malicious Loan offer to a garbage NFT, and if you sign it, you will lose your Blur ETH anymore. pic.twitter.com/cOtv7ZQZBS

— Scam Sniffer (@realScamSniffer) June 11, 2023

Similarly, through the LoanOffer message, a malevolent actor can construct a malicious sale offer with an artificially inflated price. If an unsuspecting user signs this nefarious offer, they risk losing the NFT they had lent, falling victim to the attacker’s scheme.

Hope you could understand what you are signing, stay safe!

— Scam Sniffer (@realScamSniffer) June 11, 2023

These phishing exploits pose a significant threat to users of the Blur Protocol, especially those who may not be well-versed in the intricacies of decentralized finance and smart contract interactions. It is crucial for all users to exercise extreme caution and remain vigilant when engaging with these new features.

Security experts and the development team at @blur_io are working diligently to address and mitigate these vulnerabilities. They are actively investigating potential solutions, including the implementation of additional security measures, audits, and user education initiatives.

As a precautionary measure, the Blur Protocol team advises users to carefully review and verify the details of any loan or sale offers before signing any transactions. Double-checking the terms, prices, and involved assets is essential to avoid falling victim to phishing attempts.

In light of these developments, the broader decentralized finance community should take note of the risks associated with new protocol features and remain proactive in identifying and addressing potential security loopholes. Collaborative efforts between developers, auditors, and users are crucial to maintaining the integrity and security of the rapidly evolving DeFi ecosystem.

While the potential phishing exploits discovered in the Blend Protocol’s new EIP712 messages are concerning, it is essential to remember that with proper caution and awareness, users can navigate the decentralized finance landscape securely. Nonetheless, it is incumbent upon all stakeholders to prioritize security measures and promote responsible use of DeFi protocols to safeguard the community as a whole.