Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
A member of the crypto community previously revealed that "a smart contract of a certain Web3 project was suspected to have been implanted with malicious code by an employee," leading to losses of several hundred thousand dollars. Thomson, a developer of the DeFi trading and asset management project QuantMaster, stated that he was the primary victim of this theft. According to Thomson, the suspect has been largely identified. The GitHub submission records clearly point to a specific employee, and the device used to submit the code is also unique. Cursor retains a complete local AI activity log, which has been reviewed, ruling out the possibility that the malicious code was generated or modified by AI. Attack method (per SlowMist): Insider Manipulation. Reported loss: $100,000.
- chain
- —
- protocol
- QuantMaster
- bug_class
- social-engineering
- date_occurred
- 2025-04-27
- loss_usd
- $100,000
- source_id
- sm:quantmaster::2025-04-27