A critical exploit targeting Mobius Token smart contracts on BNB Chain resulted in the theft of $2.15 million. The attack, detected on May 11, involved a series of malicious transactions executed from contract address 0x631adf. The attacker stole 28.5 million MBU tokens, converting them into stablecoins, specifically USDT, resulting in a significant financial loss. The exploit was initiated just two minutes after the suspicious contract deployment was detected by Cyvers Alerts.
Cyvers Alerts noted that the attack was executed using abnormal transaction patterns and suspicious contract code.
The malicious contract began transferring the stolen funds at 07:33:56 UTC, just two minutes after its deployment at 07:31:38 UTC. The stolen tokens were converted into USDT, amounting to $2,152,219.99. Cyvers has labeled the exploit as “critical” due to the methods used by the attacker and the nature of the exploit.
As of the publication of the incident, the attacker’s wallet remained active, holding the stolen funds. Mobius Token’s team has yet to issue an official statement regarding the breach or the steps being taken. The exploit’s precise cause remains unclear, but Cyvers’ identification of the suspicious contract code has highlighted the vulnerabilities within the smart contracts.
This attack is part of a larger trend in the cryptocurrency space, as highlighted by a report from PeckShield. In April 2025, blockchain security incidents led to a loss of nearly $360 million, marking a significant increase compared to March’s $33 million in losses. Among the notable events was a social engineering attack that targeted an elderly individual in the United States, resulting in the unauthorized transfer of $330 million in Bitcoin.
Reference:
