ElasticSwap

2021-01-01

ElasticSwap founders launch ElasticDAO, the predecessor project, on Ethereum.

2022-01-20

Code4rena competitive audit begins for ElasticSwap smart contracts. Auditors identify high-severity vulnerability H-02: direct token transfers to pool contracts can inflate balances and enable value extraction via removeLiquidity.

2022-01-26

Code4rena audit contest closes. Nine unique vulnerabilities identified including two high-severity findings.

2022-05-11

ElasticSwap protocol and AMM interface launch on Avalanche with an AMPL liquidity pool. TIC governance token goes live.

2022-05-01

ElasticSwap announces strategic partnerships with Big Brain Holdings, ShapeShift, Ampleforth, Connext, and Nomad, and plans multi-chain expansion to Polygon, Arbitrum, and Fantom.

2022-12-12

Three separate flash loan attacks exploit ElasticSwap on Avalanche and Ethereum chains. Attackers exploit accounting inconsistency between addLiquidity (constant K) and removeLiquidity (live balance) to drain liquidity pools. Total stolen: approximately $854,000.

2022-12-13

ElasticSwap announces the exploit publicly on Twitter at approximately 07:33 AM UTC and urges all users to remove liquidity immediately. TIC token price falls more than 70%.

2022-12-14

MEV bot operator who front-ran the Ethereum attacker agrees to return 400.5 ETH to ElasticSwap treasury under the bounty program, retaining approximately 44.5 ETH as a bounty fee.

2022-12-15

ElasticSwap team initiates community governance vote on how to manage recovered assets while developing refund proposals for affected users.

2023-01-22

ElasticSwap team publishes JSON files documenting aggregate losses by address across all chains. Treasury multisig holds approximately 487 ETH ($625,000). Approximately 55% of user funds recovered total; 50.89% of users vote to convert recovered assets proportionally for reimbursement.