VERDICT —OUT OF SCOPE
Root cause is infrastructure (DNS / cloud / database / third-party API) compromise, not on-chain contract logic. Pre-deployment source review would not surface this; coverage lives in cloud-security + supply-chain audit, separate discipline.
▰ METHOD
INFRASTRUCTURE
INFRASTRUCTURE
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
Swiss crypto platform SwissBorg suffered a security incident in which approximately 192,600 SOL (~$41.5M) was stolen on Solana. According to SwissBorg’s official statement, the incident was caused by a compromised partner API, impacting its SOL Earn program. Attack method (per SlowMist): Third-party Vulnerability. Reported loss: $ 41,500,000.
Primary source
https://x.com/swissborg/status/1965123506477359471 ↗Sourced from
slowmist
Technical record
- chain
- solana
- protocol
- SwissBorg
- bug_class
- infrastructure
- date_occurred
- 2025-09-08
- loss_usd
- $41,500,000
- source_id
- sm:swissborg::2025-09-08
Related — same bug class· infrastructure