Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Reproducible Foundry test fork from SunWeb3Sec/DeFiHackLabs. Clone the repo, run forge test against the file path above, and replay the exploit against a mainnet fork at the historical block. Use for reproduction only — not for live targets.
SpaceGodzilla, a project on the BSC chain, was attacked by hackers with a flash loan. Hackers used flash loans to borrow large amounts of money, manipulated the price of SpaceGodzilla in the trading pool on PancakeSwap, and exploited vulnerabilities in the project for arbitrage. At present, the hacker has exchanged the 25,378.78 BUSD profited from this attack to BNB and transferred it through Tornado.Cash. Attack method (per SlowMist): Flash Loan Attack. Reported loss: 25,378.78 BUSD.
- chain
- bsc
- protocol
- SpaceGodzilla
- bug_class
- flashloan
- date_occurred
- 2022-07-14
- loss_usd
- —
- source_id
- sm:spacegodzilla::2022-07-14