Super Sushi Samurai, a new blockchain game on the Blast layer-2 blockchain was exploited for $4.6&nbsp;million when an attacker discovered a vulnerability in its <button class="define-target" id="smart-contract">smart contract</button>. A bug in the <button class="define-target" id="mint">mint</button> functionality caused users who transferred their $SSS balance to themselves to receive twice as many tokens. An attacker took advantage of this to drain $4.6&nbsp;million from the project, causing the $SSS token to plummet by 99%.<p>The attacker contacted the project shortly after the theft, claiming to be a whitehat. They wrote, "Hi team, this is a whitehat rescue hack. Let's work on reimbursing the users." Super Sushi Samurai later confirmed that the funds had been returned, minus a 5% "bounty". The team also gave the whitehat an additional 2.5% in SSS tokens and land, and brought them on to the project team as a tech adviser.</p>

Archived tweet

Tweet by coffeexcoin:

Tweet #1

Image #1:

Links: