A blockchain game native to layer-2 solution Blast experienced a tokens exploit just hours before its gaming product was set to launch. The team announced that Super Sushi Samurai on L2 network Blast was exploited for $4.6 million due to a bug in its smart contract code. On-chain security firm CertiK also confirmed the amount lost.
The incident occurred as Super Sushi Samurai launched its native crypto SSS on March 17 and planned to fully launch its game on March 21. A white hat hacker took advantage of a smart contract vulnerability to trigger an infinite mint function. This allowed the exploiter to double token balances by transacting with themselves and then selling massively into SSSβs liquidity pool.
As a result, the price of SSS plummeted by over 99%, according to CoinGecko. However, the team provided an update stating that the hacker had been in communication and hinted at plans to reimburse affected users. Smart contract exploits are not uncommon in the crypto space, especially on newly launched networks like Blast.
Blast, an Ethereum-based scaling network, recently went live and saw over $1.7 billion in withdrawals shortly after its launch. Despite these challenges, Blast remains one of the largest L2 networks with over $1 billion in total value locked, according to DefiLlama.