uniswap
![Uniswap V4: Bad hook with broken access control](/static/2c5e753165deb2091f6ec23205d135ec/9dcfd/featured.png)
January 23, 2024
Uniswap V4: Bad hook with broken access control
The threat scenario covered in this article is "attacker calls hooks directly on the hook contract". The example illustrating such a…
![Damian Rusinek](/static/a8341febeb3c422f4daf4b0d533face2/a5f4a/Damian_Rusinek.jpg)
Damian Rusinek
Managing Partner & Smart Contract Security Auditor
![Uniswap V4: Liquidity Theft via Hook Fee](/static/e12a01a9dd77a6acf3e1287047e06c98/9dcfd/featured.png)
December 19, 2023
Uniswap V4: Liquidity Theft via Hook Fee
This article is one of a series where we present some implementations of "Bad Hooks" as part of our research supported by the Uniswap…
![Damian Rusinek](/static/a8341febeb3c422f4daf4b0d533face2/a5f4a/Damian_Rusinek.jpg)
Damian Rusinek
Managing Partner & Smart Contract Security Auditor
![UniswapV4: Further research to improve hooks security](/static/28c60a65499cb8733045b55765068a3b/9dcfd/featured.png)
January 16, 2024
UniswapV4: Further research to improve hooks security
Uniswap V4 hooks is an area full of potential, but also threats lurking for unprepared hook developers. To innovate, they need help and…
![Paweł Kuryłowicz](/static/2207cb3e208fc329dd7d76f7bfa26066/b116c/Pawel_Kurylowicz.png)
Paweł Kuryłowicz
Managing Partner & Smart Contract Security Auditor
![Uniswap V4: Re-Initialization Leading to Funds Locked](/static/ff605f227a79f48b851a81dba6587eb1/9dcfd/featured.png)
December 07, 2023
Uniswap V4: Re-Initialization Leading to Funds Locked
This article is one of a series where we present some implementations of “Bad Hooks” as part of our research supported by the Uniswap…
![Damian Rusinek](/static/a8341febeb3c422f4daf4b0d533face2/a5f4a/Damian_Rusinek.jpg)
Damian Rusinek
Managing Partner & Smart Contract Security Auditor
![Uniswap V4: Oracle hook with malicious owner](/static/9c16def2e5d158d572726d9e73bc74ba/9dcfd/featured.png)
January 02, 2024
Uniswap V4: Oracle hook with malicious owner
The threat scenario covered in this article is "malicious hook owner updates the oracle parameters resulting in invalid price". The example…
![Damian Rusinek](/static/a8341febeb3c422f4daf4b0d533face2/a5f4a/Damian_Rusinek.jpg)
Damian Rusinek
Managing Partner & Smart Contract Security Auditor