A blockchain recreation native to layer-2 resolution Blast suffered a tokens exploit hours earlier than its gaming product launched.
In keeping with an announcement from the group on X, Tremendous Sushi Samurai on L2 community Blast was exploited for $4.6 million as a result of a bug in its good contract code. On-chain safety agency CertiK additionally confirmed the quantity misplaced.
We now have been exploited, it’s mint-related. We’re nonetheless trying into the code. Tokens had been minted and bought into the LP.
SSS group on X
Tremendous Sushi Samurai launched its native crypto SSS on March 17 and scheduled its full recreation launch on March 21. Nevertheless, an obvious white hat hacker leveraged the good contract vulnerability to provoke an infinite mint operate.
The exploiter doubled the token balances by transacting with themselves and ultimately mass promoting into SSS’s liquidity pool. Final month, an identical incident occurred with a contract that multiplied balances.
Per CoinGecko, this crashed the worth of SSS by over 99%. An replace from the group mentioned that the hacker had established communications. The hacker’s message, seen on Blastscan, advised it was a rescue mission and a plan to reimburse customers was within the works.
Sensible contract exploits are widespread in crypto, significantly on newly launched networks like Blast. The Ethereum-based scaling community went reside earlier this month and experienced over $1.7 billion in withdrawals shortly after.
In keeping with DefiLlama, Blast remains to be one of many largest L2s as of writing, with greater than $1 billion in complete worth locked.
