VERDICT —UNRATED
Verdict pending. Auto-ingested incidents are reviewed before a public verdict is rendered.
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
io.net founder and CEO Ahmad Shadid announced on social media that io.net's metadata APIs recently experienced a security incident. A malicious party exploited accessible mappings of User IDs to Device IDs, leading to unauthorized metadata updates. This breach did not compromise GPU access but did affect the metadata displayed to users on the frontend. Attack method (per SlowMist): Security Vulnerability. Reported loss: -.
Sourced from
slowmist
Technical record
- chain
- —
- protocol
- io.net
- bug_class
- access-control
- date_occurred
- 2024-04-25
- loss_usd
- —
- source_id
- sm:io-net::2024-04-25
Related — same bug class· access-control
2026-05-13
28d ago
ARB
access-control
$132.7K
AUDIT-CATCHABLE
2026-05-12
28d ago
ETH
access-control
$47.5K
UNRATED
2026-05-12
29d ago
—
access-control
$455.0K
UNRATED
2026-05-11
29d ago
POLY
access-control
$101.4K
AUDIT-CATCHABLE
2026-05-10
1mo ago
ARB
access-control
$209.0K
UNRATED
2026-05-10
1mo ago
ARB
access-control
$209.0K
UNRATED