GANA Payment, a project operating on the BNB Smart Chain, has suffered a significant security breach resulting in a loss exceeding $31 million. The publication provides the following information: the incident has raised concerns about the safety of decentralized finance platforms as an attacker exploited vulnerabilities to gain control over key contract rights.
Security Breach in GANA System
The breach allowed the attacker to manipulate the GANA system, changing ownership of a contract without authorization and releasing excess GANA tokens. Blockchain researcher ZachXBT reported that the exploiter moved a substantial portion of the stolen assets through Tornado Cash, utilizing both the BSC and Ethereum networks. Approximately $1 million remains unspent in Ethereum addresses, while the attacker consolidated stolen funds before transferring 1,140 BNB (around $104 million) into Tornado Cash on BSC and bridging another 346 ETH (valued at about $105 million) to Ethereum via the same mixer.
Response from GANA Payment
In response to the incident, GANA Payment has acknowledged the unauthorized activity and is collaborating with a third-party security firm to conduct a thorough investigation. The project has advised users to refrain from trading the GANA token until further notice, highlighting the importance of security in the rapidly evolving crypto landscape.
The recent security breach at GANA Payment highlights ongoing vulnerabilities in the crypto space, while the US Department of Homeland Security has launched an investigation into Bitmain for potential national security risks. For more details, see Bitmain investigation.
