🚨 Incident Briefing | GANA Payment Attacked, Loss of $3.1 Million
In November, the GANA Payment project on the BSC chain was attacked by hackers, resulting in a loss of approximately $3.1 million.
The attackers quickly transferred assets through cross-chain bridges and deposited over $2 million of the stolen funds into Tornado Cash for mixing.
💡 Key Points:
Current Fund Status: There is still $1.046 million (346 ETH) temporarily held in the attacker's address, which is a critical tracking window.
Attack Mode: Theft → Cross-Chain Transfer → Mixing, has become the standard “money laundering” process for hackers.
✅ Warning to the Project Team:
Timeliness of Emergency Response: Funds were transferred and mixed within hours of the attack, highlighting the extreme importance of establishing automated monitoring and emergency response mechanisms.
Cross-Chain Risks: Cross-chain bridges have become standardized tools for hackers to transfer funds and evade single-chain monitoring, necessitating security defenses to cover all associated chains.
Vulnerability Cost: This incident once again demonstrates that a vulnerability not detected in time can instantly destroy a project.
