Aave contributor bgdlabs: attacks detected on some Aave peripheral contracts, all user funds safe

On August 28th, Aave contributor bgdlabs said it detected a series of transactions across different networks today that show an attack on some Aave peripheral contracts, which are not part of the Aave protocol itself and are only used on the app.aave.com user interface. Aave core smart contracts, which involve all pool dynamics, are not affected and are not related to these transactions. The affected smart contracts only interact with the users who use them and with the contracts themselves. This means that any potential attacker cannot affect any other users. No funds were withdrawn from any user during these transactions, and all users' funds are completely safe in relation to Aave. As a precaution, the maintainers of app.aave.com (Aave Labs) have temporarily disabled these and any other features of a similar nature while we complete our research.