Hackers Stole $38K From Blockchain-Based Platform SpankChain
Vulnerability in smart contracts’ payment channel of blockchain-based platform for adult SpankChain allowed the attackers to steal $38K worth of Ethereum and native tokens BOOTY. The SpankChain team has told about it on Medium, posting an entry called “We got spanked: what we know so far”.
$9 300 of stolen funds belonged to the users of Ethereum-based platform, the remaining amount belonged to SpankChain. The project team claimed that the theft took place because of “reentrancy” bug which exploited in The DAO in 2016.
The company learned about the hack in 24 hours after the attack. The project has frozen $4000 worth of BOOTY tokens on SpankChain for some time.
As the project representatives report, they are working on solving the problem. However, this won’t influence the platform’s operation. The SpankChain team also promises to make amends.
Earlier, it was reported that the vulnerability in a smart contract of EOS-based app allowed a hacker to get $200 000.