I was the victim of a smart contract approval exploit on the Arbitrum network. On March 19, 2026, I created a liquidity position on Uniswap (USDC/USDT pair), followed by an additional liquidity increase on March 20, 2026, bringing the total position value to approximately $40,000. Relevant transactions: - Liquidity creation: 0x23c78cd1cc33603ed706160cdc7e62046fb44793226763abb9127b94d96c1e99 - Liquidity increase: 0x8f062d2d441ee4b963a8830416010101bb8ce60b8a4b76ea351c180f54d446bf Subsequently, a malicious approval was executed, granting a contract permission to manage assets: - Malicious approval (Permit2): 0xd37e17741efeb70556b480e59c64f8a2a999ce1fbbd2737c32a0b32e89ac44cb Following this approval, my Uniswap liquidity position NFT was transferred out of my wallet without my authorization: - Unauthorized NFT transfer (exploit event): 0xf9f4469b02ce01894aa338dc1a292f288e92f2060bfdb73874ab845cbdd11fc1 After gaining control of the LP NFT, the attacker executed liquidity removal functions (DecreaseLiquidity and Collect), effectively draining the entire position. The attacker-controlled address involved: 0x5b6fD5C3Bd1F18210625e997eE4826C55e14E739 The total funds extracted are estimated at approximately $39,141.92 (thirty-nine thousand one hundred forty-one dollars and ninety-two cents). This incident is consistent with a smart contract approval exploit, where a malicious contract was granted spending authority and used that permission to transfer the LP NFT and withdraw all associated liquidity. Importantly, I did not interact with any suspicious or unknown links. I have reviewed my browser (Chrome) history at the time of the incident and confirmed that I only accessed previously saved and verified official websites (including Uniswap). No phishing links or unknown domains were accessed. There is no indication of private key compromise. The attack was executed entirely through smart contract authorization mechanisms.