Super Sushi Samurai’s development team announced on Thursday that they are collaborating with an apparent white hat hacker to retrieve users’ funds following a $4.6 million token theft from an exploit.
Super Sushi Samurai is a recently launched game which operates on the Ethereum scaling network Blast. The exploit took advantage of a token transfer flaw within the game’s smart contract. In response to the hack, the price of its native token, SSS, plummeted to a fraction of a penny.
A pseudonymous developer known as Coffee, associated with Yuga Labs, revealed on X that the bug enabled exploiters to increase their holdings by transferring their entire balance to themselves, effectively doubling it.
Security firm CertiK identified the exploit and labelled it as a white hat rescue. Such rescues occur when a hacker exploits a protocol to expose vulnerabilities to project developers. Typically, the noble hacker is rewarded and allowed to retain a portion of the funds taken.
Super Sushi Samurai announced on X that they are collaborating with the white hat hacker to ensure the safe return of funds to affected users, with plans for an update and postmortem to follow.
According to Cielo.Finance, which tracks blockchain data, SSS tokens were swiftly purchased following the hack, as traders anticipated a potential return of funds by the white hat hacker, which could lead to a rise in token prices.
Super Sushi Samurai is a simple “idle” game operating within the Telegram messaging platform, similar to the recent crypto gaming sensation, Notcoin. The game, currently accessible only to players with access codes, involves cartoonish warriors battling enemies to earn token rewards, with additional features such as NFT land plots contributing to clan battles known as “megawar.”
Operating on the Ethereum layer-2 network Blast, which aims to enhance speed and reduce costs compared to the mainnet, the game faced technical challenges last week when it briefly ceased producing blocks following Ethereum’s Dencun upgrade.