The liquidity provider wallets for Super Sushi Samurai, an idle Telegram game, emptied for $4.6 million due to a fault that allowed users to double their funds.
The project’s official X account stated, “We have been exploited, it’s mint related. We are still looking into the code. Tokens were minted and sold into the LP.” Along with transaction details of the hack.
Coffee, a Yuga Labs smart contract developer, pointed out a problem in the token contract. A user’s funds would double if they transferred their whole wallet amount to themselves.
It appears that the attacker carried out this exact action before using the money to deplete the liquidity on decentralized exchanges. The attacker sold the newly created tokens for 1,310 wrapped ether, or $4.6 million at the current exchange rate.
It’s possible that the money won’t be lost totally. The individual who took the money, claims that the hack was a whitehat rescue attempt.
They indicated that users should be refunded and provided contact information. The project declared that it had gotten in touch with the exploiter.
The game is hosted on the Blast network and is played over Telegram. Incentives come from a combination of a trading tax, a Blast on-chain transaction fee refund, and the yield that ether in the LP pool produces.
Also Read: Telegram BonkBot Surpasses Coinbase with $250M Daily Volume
