PANews, June 18 — SlowMist founder Cos posted on X that Aztec is suspected of being exploited again, with three suspicious exploits (totaling approximately $2.15 million) involving its Private Rollup Bridge address: The attacker leveraged the Escape Hatch mechanism of Aztec’s RollupProcessor, submitting rollup proofs acceptable to the verifier within the open window, and exploited a vulnerability in the processDepositsAndWithdrawals function to construct three consecutive withdrawals: 1,158 ETH, 150,000 DAI, and 0.4696 renBTC, releasing assets directly from the contract’s custodial reserves to the attacker. The funds mainly flowed to the address 0x6952...E97F, with some ETH already transferred to other addresses, and the attacker’s Gas source was unionchain.ai.