VERDICT —OUT OF SCOPE
Root cause is phishing — victims signed malicious transactions or approvals off-protocol. Contract logic was not the failure surface; user-side wallet hygiene was. Pre-deployment audit cannot catch this class.
▰ METHOD
PHISHING
PHISHING
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
SlowMist founder Cosine tweeted that Gate.io’s official Twitter account may have been hacked. Hackers sent phishing messages to trick users into visiting gąte[.]com. Once you click "Claim", the eth_sign signature phishing will appear, which may lead to the theft of related assets such as Ethereum. Attack method (per SlowMist): Account Compromise. Reported loss: -.
Primary source
https://twitter.com/evilcos/status/1583640865418842113 ↗Sourced from
slowmist
Technical record
- chain
- ethereum
- protocol
- Gate.io
- bug_class
- phishing
- date_occurred
- 2022-10-22
- loss_usd
- —
- source_id
- sm:gate-io::2022-10-22
Related — same bug class· phishing