Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Hot wallets operated by TopGoal were attacked and compromised. In this hack, only the hot wallet operated by TopGoal, which manages the distribution of TopPrize rewards, was affected. All user assets including NFTs and TMTs are safe. The hackers transferred a total of 4,809,984 TMT from the TopGoal-operated hot wallet to the address 0x7F0D082D08874A57110c73a8853967e7C19D1a6e. The hackers then exchanged all those TMTs from PancakeSwap for over 2,600 BNB and used Tornado to transfer the BNB out of the address. Attack method (per SlowMist): Wallet Stolen. Reported loss: 4,809,984 TMT.
- chain
- —
- protocol
- TopGoal
- bug_class
- private-key
- date_occurred
- 2022-02-17
- loss_usd
- —
- source_id
- sm:topgoal::2022-02-17