Smart contract exploit drains $3 million from Avalanche's Stars Arena
The exploit was initially highlighted by X (formerly Twitter) user @0xLawliette during the early hours in the Asian time zone on Saturday.
- Republic Business
- 2 min read
Stars Arena locked funds hacked: The Stars Arena app on Avalanche experienced a major drain of locked funds due to an exploit in a smart contract responsible for token security on the platform. The attackers successfully drained approximately $3 million worth of AVAX tokens, leaving Stars Arena with a meagre sum of under $1 in remaining funds. The exploit was initially highlighted by X (formerly Twitter) user @0xLawliette during the early hours in the Asian time zone on Saturday, with further warnings from user @0xlilitch.
Confirmation of the attack came from Stars Arena developers via a tweet on Saturday morning. Despite being relatively new to the scene with a launch just over a week ago, Stars Arena quickly garnered a devoted following within the Avalanche community. Some users even earned up to 1,000 AVAX in trading fees through the platform, contributing to a 6 per cent price bump in AVAX tokens at one point during the week.
Speculations on ‘shares’ volatility
Stars Arena drew comparisons to Friend.Tech, a social app on Ethereum that amassed 100,000 users within weeks of its August release. Both applications allowed users to acquire ‘keys’ or ‘shares’ of popular X users, granting access to exclusive chatrooms with various privileges. The value of these shares exhibited high volatility, leading users to speculate on price fluctuations and generate profits.
This exploit transpired despite some Ava Labs employees expressing support for the platform's developments, potentially increasing user trust. Notably, founder Emin Gün Sirer and other Ava Labs employees showcased enthusiasm for the app through multiple X posts. However, when @0xlilitch initially raised concerns about a potential security exploit on Friday, Sirer appeared to downplay the issue, stating that any potential breach had already been rectified.
Published By : Anirudh Trivedi
Published On: 8 October 2023 at 12:20 IST