⚠️ Announcement: It appears that Ponder smart wallets have been hacked. We’re actively investigating and it looks like all $7k has been taken. 

➡️ All users wil be reimbursed this week

We’ll spend the next few days figuring out what happened. Warplet transactions are still safe. 

More to come as we learn. Smart Wallets are a new tech for us and we expected there to be some risk, but didn’t think we’d get targeted this early 🙃

Update on today's incident: We've identified a critical vulnerability in our withdrawal API, where there was an exploit that allowed unauthorized withdrawals to bypass our security checks. We've frozen withdrawing funds on smart wallets until this is fully resolved.

Most importantly - all smart contracts, admin wallets, and user smart wallets remain fully secure and uncompromised

The root cause was an authentication spoofing technique in our API routes due to architectural constraints within our auth system. We've learned a lot from this exploit and are implementing more robust security measures to prevent a situation like this from ever happening again.

All affected users will be refunded this week

co-founder @ponder @survey // benadamsky.com

We're looking into that as well, although #1 priority is making sure our users and their funds are safe

Appreciate you 🙏 we'll do everything we can to make this right for everyone affected