A recent incident has shaken the Web3 space, as StarsArena, a prominent app operating on the Avalanche network, experienced a malicious attack. On October 5, reports surfaced on social media that the platform had suffered significant losses.
Details of the Attack
The news of the attack first came to light when a user named Lilitch.eth noticed and publicized the issue on X, previously known as Twitter. Lilitch.eth reported that over $1 million had been drained due to the exploit. However, the StarsArena team, while acknowledging the attack, estimated the losses to be around $2,000. They reassured their user base that the loophole had been addressed and secured.
StarsArena, akin to Friend.tech, offers its users the opportunity to purchase ‘shares’ or tokenized assets issued by content creators. These tokens can unlock exclusive content and other benefits for the holders. The platform’s launch saw a significant increase in activity on the Avalanche network, with daily transactions rising by over 186% between October 3-4.
Reactions to the Attack
Following the revelation of the attack, some users accused Lilitch.eth of ‘fudding’ (spreading fear, uncertainty, and doubt). A developer from ZSwapDEX, Mork, pointed out that the exploiters would not profit from the attack as the cost of the gas to execute the transactions exceeded the amount of Avax extracted.
In response to the claims, the StarsArena team asserted that the exploit had been rectified. They argued that the attackers were trying to tarnish the app’s reputation by spending more in gas than they were extracting from the platform.
The Aftermath of the Attack
Despite the initial panic, the situation was resolved with the StarsArena team successfully patching the exploit. Lilitch.eth later retracted their accusations, stating their support for the platform and denying any intention of causing harm.
It’s worth noting that such attacks are not exclusive to StarsArena. Friend.tech users have also been victims of SIM-swap attacks, leading to a heightened sense of caution among users of similar platforms. To mitigate these risks, the Friend.tech team implemented a function to remove login methods.
With the recent malicious attack on StarsArena, it becomes even more critical for users to ensure their investments are secure. One way to do this is by using reliable platforms like cryptoview.io for tracking their crypto assets.
