Fun

Super Sushi Samurai token plunges 99% due to double-spending glitch

News Feed - 2024-03-22 03:03:53

Zhiyuan Sun5 hours agoSuper Sushi Samurai token plunges 99% due to double-spending glitchOver $4.8 million was withdrawn from its liquidity pool by a self-proclaimed white hat hacker.773 Total views9 Total sharesListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTJoin us on social networksGameFi project Super Sushi Samurai (SSS), built on Coinbase’s Base layer-2 blockchain and the Telegram messaging app, saw a $4.8 million withdrawal on March 21 from its liquidity pools by a self-proclaimed white hat hacker upon the discovery of a double-spending glitch.


In a statement to Cointelegraph, blockchain analytics firm CertiK noted that “the vulnerability is within the [SSS] contracts _update() function, which doesn’t correctly update balances when transferring to self.” So, when a user transfers their entire balance of SSS tokens to themselves, the resulting balance is doubled.The @SSS_HQ $SSS LP was just drained on blast because their token contract has a bug where transferring your entire balance to yourself doubles it.

The order of operations decrements the balance for "from" and then sets the balance for "to" - if these are the same address, the… pic.twitter.com/RStMcFH3sy— Coffee ☕️ (@coffeexcoin) March 21, 2024


CertiK noted that during the incident, one user, operating the address 0x786C8f95C17BB990a040dc4D6539B01FC1b72842, initially purchased 690 million SSS tokens, transferred the entirety of the balance to themselves, doubled it 25 times, and finally ended “with 11.5 trillion SSS tokens which were then sold for 1,310 ETH (~$4,590,827).”


Shortly after the incident, the user who double-spent the tokens stated in a blockchain message: “Hi team, this is a whitehat rescue hack. Let’s work on reimbursing the users. Please reach out via Blockscan chat from the SSS deployer 0x555b28f3b8b3b8ebd1b06997c2078fd94529f555 on Ethereum mainnet.”


Despite their goodwill, however, it is worth noting that the self-proclaimed white hat led to the collapse of the SSS token after withdrawing $4.8 million in funds. Prior to the collapse, SSS had a total market cap of $27.75 million. The tokens have since lost over 99% of their value. The same day, SSS developers responded: “Hello, white hat; we have reached out to you on Blockscan. Thank you for cooperating with us. SSS Team.”


Just one month prior, the novel ERC-X token Miner crashed by 99% after a user discovered a double-spending glitch that led to the infinite minting of tokens. “It’s a pity that the contract has low-level loopholes. You can double your balance by transferring money to yourself,” said Yu Xian, co-founder of Singaporean blockchain security firm SlowMist, regarding the incident. The glitch led to user losses of over $10 million. 


Related: KyberSwap attacker used ‘infinite money glitch’ to drain funds — DeFi expert# Blockchain# Cryptocurrencies# Security# Hackers# Hacks# DeFiAdd reactionAdd reactionRead moreHacker moves $10M from 2023 phishing incident to Tornado CashTokenized US Treasurys grew to $845M in 2023 — CoinGeckoLayerswap overrides website hack that drained $100K

News Feed

Silver and Gold — Precious Metals Stored Value This Year Outperforming Crypto Assets in 2022
Silver and Gold — Precious Metals Stored Value This Year Outperforming Crypto Assets in 2022 Gold prices are ending the year a hair below the values recorded 12 months ago. Stati
Solana Next Major Move? SOL’s Renewed Uptrend Smashes Through $137
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
Bitcoin analysts converge on a breakout in September — But is $86K possible?
Zoltan Vardai9 hours agoBitcoin analysts converge on a breakout in September — But is $86K possible?Bitcoin could see a breakout to new all-time highs as soon as next month, but BTC must first tackle significant resist
Ten Years Ago Satoshi Nakamoto Logged Off – The Final Message from Bitcoin’s Inventor
Ten Years Ago Satoshi Nakamoto Logged Off - The Final Message from Bitcoin"s Inventor Ten years ago today, the pseudonymous programmer (or programmers) Satoshi N
US Asks Japan to Pressure Crypto Exchanges, Miners Working With Russia, Report Unveils
US Asks Japan to Pressure Crypto Exchanges, Miners Working With Russia, Report Unveils U.S. diplomats have reportedly called on authorities in Tokyo to increase pressure on Japanes
Here Are The Factors That Could Drive The Dogecoin Price To $1 This Bull Market
Este artículo también está disponible en español. Driven by bullish market sentiment following Donald Trump’s win in the concluded US Presidential election, the Dogecoi
Elementus Raises $10 Million to Bring Clear Blockchain Analytics to Institutional Customers
Elementus Raises $10 Million to Bring Clear Blockchain Analytics to Institutional Customers Elementus, a New York-based blockchain firm, has raised $10 million as part of its Serie
Japanese Online Retail Giant Rakuten Launches NFT Marketplace
Japanese Online Retail Giant Rakuten Launches NFT Marketplace Rakuten Group, the Japanese electronic commerce and online retail company based in Tokyo has announced the launch of a
KuCoin deemed ‘fine’ by analyst, despite criminal allegations
Ciaran Lyons2 hours agoKuCoin deemed ‘fine’ by analyst, despite criminal allegationsDespite legal action against KuCoin’s founders and a drastic uptick in withdrawals from the exchange, CryptoQuant CEO Ki Young Ju
China’s Hebei Province Begins Crackdown on Crypto Mining and Trading, Reports Reveal
China’s Hebei Province Begins Crackdown on Crypto Mining and Trading, Reports Reveal Authorities in the Chinese province of Hebei have reportedly launched a campaign against cryp
South Korean province implements digital system to track tax evaders’ crypto
David Attlee8 minutes agoSouth Korean province implements digital system to track tax evaders’ cryptoThe Gyeonggi Tax Department used the resident registration data of “delinquents,” tracing their mobile phone numb
Helen Partz14 hours agoGoldman Sachs leads $95M funding round for blockchain payment firm Fnality: ReportWith $158 million of total capital raised since 2019, Fnality plans to launch the Sterling Fnality Payment System i