The Fantom Foundation, the developer of the Fantom network, has fallen victim to a hacking incident resulting in the loss of more than $550,000 worth of cryptocurrency. The foundation confirmed the attack on October 17, 2023, reassuring the public that 99% of their funds are secure and that it primarily affected other users’ assets. The team is currently conducting an investigation to uncover the details of the breach.
Initially, blockchain security researchers reported that the attacker had stolen around $7 million in crypto. However, the Fantom Foundation released an official statement addressing the situation, clarifying that some of the wallets labeled as “Fantom: Foundation wallet” were misidentified by block explorers. As a result, not all of the stolen funds were from the foundation. While some of the affected wallets were initially owned by the foundation, they had since been reassigned to a Fantom employee and were no longer holding company funds. The team is diligently examining the attack to identify the vulnerabilities that led to the compromised wallets.
It’s important to note that the Fantom Foundation is responsible for the development of the Fantom network, a smart contract platform compatible with the Ethereum Virtual Machine. As of now, the network boasts over $45 million in assets locked within its contracts, according to DefiLlama. Consequently, the attack targeted both the foundation and other Fantom wallet users, rather than the Fantom network itself.
On October 17, renowned on-chain sleuth Spreek reported on social media platform X that the foundation had allegedly fallen victim to an attack based on information from Telegram. Spreek later listed the wallets that were compromised and estimated losses at $6.7 million. However, they also acknowledged that the drained funds might have included sources beyond the Fantom Foundation.
CertiK, a trusted blockchain security platform, confirmed that the foundation had indeed been hacked. Initially, they estimated the losses at $657,000. However, upon further analysis of the blockchain data, CertiK updated their assessment to approximately $7 million. The investigation revealed that an account labeled as “Fantom Foundation Wallet 1” by Etherscan had sent various tokens, including CVX, DAI, and USDC, to a wallet labeled as “Fake_Phishing188024.” Additionally, another account labeled as “Fantom Foundation Wallet 20” by the Fantom network block explorer had sent over 1 million FTM to an account named “Fake_Phishing32.” The act of a development team sending funds to a known scam account typically indicates a compromised private key.
As this is a developing story, more information will be provided as it becomes available. The Fantom Foundation, along with the blockchain security experts, are working diligently to investigate the attack and identify potential solutions to enhance security measures.
Update October 17, 6:40 pm UTC: An official statement from the Fantom Foundation has been incorporated into this article on X.
Update October 17, 5:55 pm UTC: CertiK has revised its estimate of total losses and additional statements from a Fantom Telegram group admin have been included.
In conclusion, the hacking incident faced by the Fantom Foundation has caused significant financial loss, and the team is actively investigating the breach. However, they have assured the public that the majority of their funds remain secure. The incident serves as a reminder of the importance of robust security measures within the cryptocurrency industry, and industry participants must remain vigilant in protecting their digital assets.
Source link