VERDICT —OUT OF SCOPE
Root cause is phishing — victims signed malicious transactions or approvals off-protocol. Contract logic was not the failure surface; user-side wallet hygiene was. Pre-deployment audit cannot catch this class.
▰ METHOD
PHISHING
PHISHING
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
Nikhil Gopalani, chief operating officer of Nike's encrypted fashion brand RTFKT, tweeted that he was attacked by a phisher and lost more than $173,000, including 19 CloneX NFTs, 18 RTKFT Space Pods, 11 CryptoKicks, etc. Gopalani believes the phishing attack may have been the result of accidentally providing confidential information to hackers posing as Apple representatives. Attack method (per SlowMist): Phishing attack. Reported loss: $ 173,000.
Sourced from
slowmist
Technical record
- chain
- —
- protocol
- Nikhil Gopalani
- bug_class
- phishing
- date_occurred
- 2023-01-03
- loss_usd
- $173,000
- source_id
- sm:nikhil-gopalani::2023-01-03
Related — same bug class· phishing