- Incident Investigation and Action
- Analysis of Vulnerability Causes
- Impact on Users and Tokens
Banana Gun team assured no vulnerabilities in their bot's backend after investigating the transfer incident from individual wallets.
Incident Investigation and Action
After the initial incident, the Banana Gun team immediately switched off the bot and began checking their backend. The investigation confirmed the backend was not compromised, affecting only a small number of users.
"We have confirmed that our backend is not compromised. Both the router and database have been thoroughly inspected, and only a very small number of users (fewer than 10) were affected. Additionally, the transfers appear to have been executed manually," announced the team on X.
Analysis of Vulnerability Causes
The Banana Gun bot will remain offline until the exact reason for the exploits is found. As the bot is used through Telegram, some suspect the vulnerability links to the chat app. Telegram is known for distributing malicious channels and fake token deals. Using the bot still requires user action after activation on Telegram.
The exploit happened just as Banana Gun opened registration for a web-based version and put out a teaser for an Appstore launch.
Impact on Users and Tokens
Immediately following the news, the BANANA token dropped from $43 to $40.34. The token may remain under pressure while the bot is offline.
An estimated 536 ETH and SOL were taken from Banana Gun deposits, totaling around $2M. User yannickcrypto.eth found 36 compromised accounts, losing 536 ETH, with SOL also drained from bot accounts.
After the exploit, other social traps claiming to have tools for coin recovery emerged. Connecting wallets to those services may extend the damage.
The Banana Gun team continues its investigation and advises all users to stop trading and transfer assets to new wallets. The bot will remain offline until the exact cause of the vulnerability is determined.
