[Balancer Hacker Exploits Permit Authorization to Transfer 195 Frozen stS] The Balancer attacker used the permit() authorization to transfer 195 frozen stS (worth approximately $3 million) from the address 0xf19…fae2 to a new address 0x0e9c…44D5, and exchanged them for WBTC and ETH. The GoPlus Chinese community pointed out that the failure of the freeze was due to the fact that the freeze occurred at the native chain level, which only affected S tokens and did not impact other ERC20 tokens (such as stS). The permit() method of stS allows off-chain signature authorization without requiring the frozen address to pay S, thereby causing the freeze to fail.