The burgeoning Super Sushi Samurai crypto game fell victim to an exploitation, resulting in a staggering $4.6 million loss. The hack exploited a vulnerability within the project’s token, SSS, enabling the duplication of balances when making transfers between the same ‘to’ and ‘from’ address, thereby facilitating the significant monetary hit. Notably, the loss of 1,310 Wrapped Ether (WETH) worth $4.6 million, attributed to the exploit, remains in the exploiter’s address at the time of writing, marking a considerable setback for the project and its participants.
The Super Sushi Samurai project had recently launched on Blast, the contentious Ethereum layer-2 network, and the SSS token was introduced on March 17. Despite being the runner-up in Blast’s recent Big Bang contest, the project encountered a ‘infinite mint’ attack, leading to a drastic plummet in the token’s value of over 99%, as reported by CoinMarketCap. Verichains’ audit of the token contract previously failed to identify the same vulnerability, which was also exploited in another token hack just over a month ago, further raising concerns about the security measures in place for new project launches.
Remarkably, the exploit claim takes an unexpected turn, with reports suggesting that the attack was carried out by a white-hat hacker to rescue at-risk funds, as evidenced by an on-chain message sent to the project team in the wake of the alarm raised. This revelation adds a compelling layer to the story, shedding light on the complexities and ethical considerations in the cryptocurrency space, particularly in response to vulnerabilities and potential financial losses.
