Carding 4 Carders
Professional
A social app created by analogy with the Friend social network.tech and deployed in the Avalanche blockchain protocol, was subjected to a hacker attack. As a result of hacking, assets worth $2.9 million were withdrawn from the smart contract.
Experts from PeckShield, a blockchain security company, noted that according to the initial analysis, hacking the Stars Arena application and stealing assets worth about $2.9 million became possible due to the problem of re-entering the smart contract. Presumably, the hack could be related to a malfunction of the getPrice function.
The attackers used a security breach in the smart contract and the ability to re-enter to increase the share of Avalanche tokens (AVAX) accounted for by"user tickets". This way, a single Stars Arena "user ticket" could be sold at a much higher price.
The Stars Arena team has asked users not to deposit any funds until the smart contract security bug is fixed.
Experts from PeckShield, a blockchain security company, noted that according to the initial analysis, hacking the Stars Arena application and stealing assets worth about $2.9 million became possible due to the problem of re-entering the smart contract. Presumably, the hack could be related to a malfunction of the getPrice function.
The attackers used a security breach in the smart contract and the ability to re-enter to increase the share of Avalanche tokens (AVAX) accounted for by"user tickets". This way, a single Stars Arena "user ticket" could be sold at a much higher price.
The Stars Arena team has asked users not to deposit any funds until the smart contract security bug is fixed.