PANews reported on July 23 that blockchain security agency BlockSec Phalcon issued a warning that its system detected a series of malicious transactions against an unverified contract (0x16d7c6f43df19778e382b7a84bcb8c763971a551) on Binance Smart Chain (BSC), causing losses of more than $600,000. Since the contract is not open source, investigations show that the vulnerability stems from the lack of slippage protection, and the attacker used a fake liquidity pool to harvest TA tokens (0x539ae81a166e5e80aed211731563e549c411b140) and sold them in a legitimate pool for profit. BlockSec Phalcon strongly recommends that users who have authorized the contract immediately revoke permissions to prevent further losses.