Binance’s Four.meme was attacked by hackers, who managed to extract the liquidity for selected meme tokens. The hackers bypassed the listing mechanism to create trading pairs for tokens not yet graduated from their bonding curve. Binance’s launch platform Four.meme was under attack, where a hacker exploited new tokens to drain liquidity. The attack bypassed some of the token’s restrictions, creating new liquidity pairs on PancakeSwap. After that, the hacker managed to drain the pools from the unofficial DEX listing. The attack happened around 04:00 GMT, during the most active trading hours on the Asian market. Four.meme noticed the attack and suspended the launch of new tokens. The platform announced all affected users would be issued compensation. Currently, https://t.co/IRnIR1BwDd is under attack, and the launch function has been suspended for emergency investigation. We will compensate affected users and provide a damage submission form to collect relevant information. Our team is working hard to fix the problem and… — Four.Meme (@four_meme_) March 18, 2025 Four.meme’s launches are planned and curated, with liquidity injections for selected tokens. However, the hacker front-ran the process, managing to attract traders and steal liquidity. According to SlowMist investigators, the attacker purchased small amounts of tokens before their DEX launch. Then, the hacker sent them to a PancakeSwap pair address. The next step was to add liquidity and rug-pull the pair when suitable. Previously, users identified the problem as another example of the flow cell manipulation bug. The newly minted meme tokens also held a flawed function , which allowed them to be moved to another recipient despite still being in the bonding curve stage. Only a limited number of tokens has been affected due to their popularity, but in theory, all Four.meme tokens could be exported that way to unauthorized trading pairs. On-chain analyst Chaofan Shou noticed there was actually no vulnerability in the smart contracts. Instead, the early transaction for listing the token was somehow leaked, and the hacker intercepted it. Tokens in the BNB Smart Chain ecosystem are still closely watched for early opportunities and sniping. One of the tokens affected was MubaraKing, a spinoff from the Mubarak meme. The hacker managed to transfer out 87.90 BNB. The other transaction affected multiple new meme tokens, including EDDY, Cocoro, Autopen, WWC and others. The hacker targeted the hottest memes linked to events from the past few days, ensuring they would have sufficient traders. The tokens and Four.meme are not compromised, but the launchpad and PancakeSwap were used as tools to manipulate prices and liquidity. However, the functions that allowed the price manipulation are still part of Four.meme’s code. The platform may have to perform another audit, as social media users are warning about multiple vulnerabilities. Meme tokens are inherently risky, but are additionally targeted by hackers for smart contract vulnerabilities. Liquidity pool draining is one of the most common attacks, where the hacker relies on a rush of users for each new pair. Pump.fun sees a significant volume from bots and automated traders, who are moving fast even for the newest listings. Four.meme aims to replace Pump.fun Four.meme has been launching a high-profile meme almost daily. The platform is growing its user base, though still not comparable to the Pump.fun frenzy. The launchpad aims for a more sustainable path, with more selective token launches and user support. The past month saw Four.meme expand its user base to over 143K unique users. Since the launchpad gained popularity, a total of 1,519 tokens were listed on the exchange. Over 15K users interacted with the launchpad in the past 24 hours, during one of the most active days for the ecosystem. Four.meme was having a revival in the past few days, coinciding with generally increased usage for PancakeSwap and the BNB Smart Chain. As of March 17, the meme platform listed 112 new tokens on the PancakeSwap DEX. The platform’s popularity was driven by active messages from Changpeng ‘CZ’ Zhao, as well as from the potential to list or promote some of the new meme tokens. The popularity of the MUBARAK token also brought more users in search of the next meme. The recent popularity of Four.meme coincides with expectations of a ‘BNB Season’, where Binance’s ecosystem once again draws users and liquidity, becoming the main hub for meme tokens. Cryptopolitan Academy: Tired of market swings? Learn how DeFi can help you build steady passive income. Register Now
