Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
On October 17, Fantom Foundation Telegram Community Administrator Jane stated that some of Fantom Foundation's hot wallet assets were drained due to a zero-day vulnerability on Google Chrome. According to SlowMist's analysis of on-chain transmission methods and previous emergency response experience, this should be a case of private key theft, which may be the result of the Foundation or its employees being attacked by phishing, social engineering, and running malicious Trojan files, leading to the theft of some wallet private keys. Attack method (per SlowMist): Private Key Leakage. Reported loss: $ 657,000.
- chain
- —
- protocol
- Fantom Foundation
- bug_class
- private-key
- date_occurred
- 2023-10-17
- loss_usd
- $657,000
- source_id
- sm:fantom-foundation::2023-10-17