According to Enso, the DeFi infrastructure company disclosed a class of malicious liquidity pools dubbed "toxic pools" that manipulate trade simulations to return false optimal quotes to wallets and DEX aggregators while executing with worse pricing on-chain. One compromised Curve pool processed over 129,000 swaps and resulted in approximately $225,000 in overpriced quotes, with over 37,000 additional transactions being reverted and consuming nearly $30,000 in gas fees.
On Polygon, a malicious Uniswap v4 hook lured routing systems with false rates, subsequently triggering a 99.1% transaction failure rate. Enso stated it has updated its Enso Shield execution protection product to detect false quotes across Ethereum and Polygon environments.