Aurory (AURY), a blockchain-based tactical Japanese role-playing game built on Solana (SOL), recently experienced a significant liquidity loss in its Camelot’s AURY-USDC pool. This loss was the result of a hack on the SyncSpace bridge, which allowed the unauthorized withdrawal and subsequent market sale of approximately 600,000 AURY tokens on the Arbitrum (ARB) network.
In an official statement released on December 17, Aurory’s team disclosed the details of the incident. The team noticed unusual activity on their marketplace and quickly initiated an investigation. This investigation revealed that a malicious actor had exploited the marketplace’s buy endpoint, allowing them to inflate their AURY balance in SyncSpace. As a result, the attacker was able to withdraw around 600,000 tokens to the Arbitrum network and liquidate the stolen amount by selling it in the market.
To protect user funds, SyncSpace was promptly disabled for maintenance, temporarily suspending deposits and withdrawals. The statement emphasized that no user funds or non-fungible tokens (NFTs) were lost or put at risk during the incident.
The AURY tokens involved in the attack originated from a team wallet, which facilitated withdrawals for accounts that had not previously deposited AURY. The exploit is no longer ongoing as SyncSpace remains offline for maintenance, eliminating the risk of further exploits. The attacker has also exhausted their AURY supply and no longer possesses any tokens to sell.
SyncSpace will conduct a thorough investigation to determine how the exploit went undetected despite the previous expert audit. The team plans to release a comprehensive post-mortem report once the necessary fixes have been implemented and the investigation concludes. The marketplace is expected to be back online in the coming days.
Prior to the exploit, the price of Aurory’s token, AURY, had been experiencing a significant upward trend since October 30. It reached a yearly high of $1.9008 on December 12. However, following the recent incident, the price of AURY has retraced to $1.0868. This marks a decline of 23.5% over the past 24 hours and 36.5% over the past seven days.
Despite this setback, AURY still retains substantial gains of 74% and 70% over the 30-day and one-year periods, respectively. Market observers are now awaiting to see if the token’s support lines at $0.9681 and $0.9086 will be able to prevent further price drops or if they will succumb to the prevailing downtrend, putting a significant portion of its 2023 gains at risk.
The hack on the SyncSpace bridge resulted in a significant liquidity loss for Aurory’s AURY token. The team responded swiftly by disabling SyncSpace for maintenance and ensuring no user funds or NFTs were lost. The attacker has exhausted their supply of AURY tokens, and no further exploits are possible. Aurory’s team will conduct a thorough investigation and release a post-mortem report to prevent future incidents. Despite the price retracement, the AURY token still retains substantial gains over the 30-day and one-year periods, although its support lines will be closely watched to determine the future price trend.