The team behind a Telegram-based game said Thursday that it is working with an apparent white hat hacker to return funds to users after $4.6 million worth of tokens was stolen due to an exploit.
The hacker hit the newly launched game Super Sushi Samurai, which minted its tokens on Ethereum scaling network Blast. The price of its native token, SSS, plunged to a tiny fraction of a penny on the reports of the hack, which exploited a token transfer bug within the smart contract that powers the game.
A pseudonymous Yuga Labs smart contract developer who goes by the name Coffee said on Twitter (aka X) that the bug allowed exploiters to boost their holdings. “Transferring your entire balance to yourself doubles it,” they wrote.
Security firm CertiK spotted the exploit and said on Twitter that it was a white hat rescue. White hat rescues are when a protocol is exploited by a hacker in order to show those behind the project that they have a vulnerability. The noble exploiter then is typically rewarded and allowed to keep a share of the swiped funds.
“We’re working with the white hat on the safe return of funds,” Super Sushi Samurai said on X/Twitter hours after the hack. “An update and postmortem will follow.” The team behind the game did not immediately respond to Decrypt’s questions.
Cielo.Finance, which tracks blockchain data, told Decrypt that SSS tokens were snapped up after the hack. Traders will often do that in case a white hack returns funds and the price of the tokens then rises.
We're working with the white hat on the safe return of funds. An update and post-mortem will follow.
Super Sushi Samurai is a simple “idle” game that runs within the instant messaging platform, Telegram—much like Notcoin, a recent crypto gaming sensation. Currently limited to players who have an access code, Super Sushi Samurai sees players' cartoonish warriors fight foes to earn token rewards, plus there are NFT land plots that play into "megawar" battles between clans.
I wasn’t expecting to enjoy Notcoin. To be honest, I was pretty dismissive at first. You tap an image of a coin on your mobile device, earn an in-game currency for each tap, and are bound by an energy bar that depletes as you tap (and refills when idle). And in the end, you'll be entitled to an airdrop of an upcoming token based on your tapping abilities.
It sounded pretty dull. So imagine my surprise that three weeks after trying the game for the first time, I’m still opening it up every mornin...
It runs on Ethereum layer-2 network Blast, a scaling network which aims to make it quicker and cheaper for people to do things on the sometimes slow and costly mainnet. Blast just launched its mainnet on February 29, but already faced a significant technical hurdle last week when it briefly stopped producing blocks following the Ethereum network's Dencun upgrade.
An investor’s $1 billion Bitcoin bet on the decentralized exchange Hyperliquid swung massively on Wednesday, with their account surviving a $32 million drawdown on paper, as the asset’s price ping-ponged on a volatile day of trading.
The user, controlling a wallet starting with “0x507,” saw their position whipsaw between a profit and a loss, hours after topping off the 40x leveraged long position, according to blockchain explorer HypurrScan. Bitcoin rose to a record $109,500 earlier in the day....
Digital assets may be firmly in the mainstream, with institutional involvement and a crypto-friendly president in the White House.
But hackers and fraudsters are having a field day so far this year.
Crypto users have lost over $1.7 billion to these groups—already 14% more than 2024’s total losses of $1.49 billion, according to blockchain security firm Immunefi.
In the same period last year, losses totaled $420 million, the firm said.
The report comes amid ongoing concerns about the vulnerabil...
Libre, a regulated real-world asset platform, and the TON Foundation have launched a $500 million tokenized fund on The Open Network, aiming to bring Telegram’s $2.4 billion in corporate debt onto the blockchain for the first time.
Dubbed the Telegram Bond Fund, the product allows institutional and accredited investors to gain exposure to Telegram’s outstanding bonds directly through the TON blockchain, according to a statement shared with Decrypt.
The fund will also participate in future Telegr...