TechFlow News: On May 29, SUPERFORTUNE AI released a 24-hour incident update stating that the GUA security incident on May 27 was not, as previously suspected, caused by address contamination, but rather by the leakage of private keys belonging to one or more multi-signature signers. The attacker subsequently forged valid signatures pointing to a malicious address and exploited the “premium vanity address” feature—where the malicious address shares the same first four and last four characters as the legitimate address—to mislead other signers into completing the signature via the Safe interface.
The project team confirmed that all stolen funds have been fully traced. Approximately 2,783.99 ETH has been cross-chain transferred and consolidated into three Ethereum cold wallets, while roughly 170,121 USDT has been withdrawn. SUPERFORTUNE AI also denied rumors of internal involvement and any association with Web3Port.
Earlier report: Manta-incubated project Superfortune’s GUA token experienced a sharp short-term decline, plunging 74% within 24 hours; SUPERFORTUNE stated that the volatility likely stemmed from tampering with the multi-signature transaction address.
