Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Reproducible Foundry test fork from SunWeb3Sec/DeFiHackLabs. Clone the repo, run forge test against the file path above, and replay the exploit against a mainnet fork at the historical block. Use for reproduction only — not for live targets.
The OMNI Real Estate Token (ORT) project on BSC was attacked. The cause of the attack is suspected to be a loophole in the contract code. The attacker’s address is: 0x9BbD94506398a1459F0Cd3B2638512627390255e, one of the attack contracts is 0x0eFfECA3dBCBcda4d5e4515829b0d42181700606, the initial gas source of the attack is FixedFloat, and the attacker made more than 236 BNB, worth about $57. Attack method (per SlowMist): Contract Vulnerability. Reported loss: $ 70,705.
- chain
- bsc
- protocol
- OMNI Real Estate Token
- bug_class
- logic
- date_occurred
- 2023-01-17
- loss_usd
- $70,705
- source_id
- sm:omni-real-estate-token::2023-01-17