Critical Exploit Hits BNB Chain’s four.meme: SlowMist Raises Alarm

Blockchain security firm SlowMist has identified a critical liquidity exploit vulnerability affecting four.meme in a recent security advisory.

Launched only recently, four.meme is a meme coin launchpad operating on the BNB chain. This vulnerability has raised significant concerns, given the platform’s prior security challenges.

Exploit Details on four.meme

According to SlowMist, the attacker exploited a specific function within four.meme’s smart contract to purchase some tokens before their official launch. Utilizing the 0x7f79f6df function, the attacker sent these pre-launch tokens to a designated PancakeSwap pair address that had not yet been created.

This maneuver allowed the attacker to establish the pair and add liquidity without transferring the unissued tokens. Thus, they effectively bypassed the transfer restrictions that were active before the token’s official release.

Consequently, the attacker was able to add liquidity at an unintended price, resulting in the theft of pool liquidity.

“…why would the pool be emptied after the platform was fairly launched? If there is such a loophole, do all coins have this risk?,” remarked Wick, a popular user on X.

This is not the first time four.meme has faced security challenges. In February, the platform suffered a significant exploit resulting in a loss of approximately $183,000. The attacker manipulated liquidity by creating a fake liquidity pool on PancakeSwap V3 before the legitimate pool’s opening.

They exploited vulnerabilities within the platform. In response, four.meme temporarily halted liquidity operations and assured users of fund security while implementing stronger protections.

The BNB chain meme coin platform issued an emergency announcement acknowledging a malicious attack. The team promptly intervened to address the issue, suspending the token liquidity pool (LP) launched on PancakeSwap to ensure security.

Implications for PancakeSwap and BNB Chain

The recent exploit on four.meme comes at a time when PancakeSwap, a leading decentralized exchange (DEX) on BSC, has been experiencing significant growth. In February 2025, PancakeSwap reached a trading volume of $81 billion, the highest since 2021, pushing its total cumulative volume beyond $1.1 trillion.

This surge was fueled by BNB Chain’s recovery and the growing interest in meme coins, with PancakeSwap dominating 90% of BNB Chain’s DEX market share.

However, security incidents like the one involving four.meme platform highlights the vulnerabilities within the ecosystem. They also highlight the need for strong security measures to protect user funds and maintain trust in decentralized platforms.

As the popularity of meme coins and decentralized finance (DeFi) platforms continues to rise, ensuring their security and integrity becomes increasingly critical.

Users should also exercise caution and conduct thorough due diligence before engaging with new projects. On the other hand, platform developers must prioritize security to safeguard user assets and uphold the credibility of the DeFi ecosystem.