Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
The hacker "refundwallet" tried to attack the EOSCast game contract "eoscastdmgb1". The hacker first used the "fake EOS" attack method to conduct 8 transfer attacks, but failed, and then successfully attacked 9 times by using the "fake EOS transfer variant". According to the rules of the game, hackers launched attacks with 100, 1,000, and 10,000 fake EOS. Each attack can get 198, 9,800, 19,600 EOS. When the last attack was carried out, the game party noticed an abnormal attack and transferred it in time. After leaving the remaining 8,000 EOS in the bonus pool, in the end, the hacker made a total of 72,912 EOS. Attack method (per SlowMist): Fake EOS Vulnerability Attack. Reported loss: 70,000 EOS.
- chain
- —
- protocol
- EOSCast
- bug_class
- logic
- date_occurred
- 2018-10-31
- loss_usd
- —
- source_id
- sm:eoscast::2018-10-31