⚠️ Announcement: It appears that Ponder smart wallets have been hacked. We’re actively investigating and it looks like all $7k has been taken. 

➡️ All users wil be reimbursed this week

We’ll spend the next few days figuring out what happened. Warplet transactions are still safe. 

More to come as we learn. Smart Wallets are a new tech for us and we expected there to be some risk, but didn’t think we’d get targeted this early 🙃

Update on today's incident: We've identified a critical vulnerability in our withdrawal API, where there was an exploit that allowed unauthorized withdrawals to bypass our security checks. We've frozen withdrawing funds on smart wallets until this is fully resolved.

Most importantly - all smart contracts, admin wallets, and user smart wallets remain fully secure and uncompromised

The root cause was an authentication spoofing technique in our API routes due to architectural constraints within our auth system. We've learned a lot from this exploit and are implementing more robust security measures to prevent a situation like this from ever happening again.

All affected users will be refunded this week

co-founder @ponder @survey // benadamsky.com

Unfortunate circumstance but y'all handled it like champs

Appreciate it 🙏 we’ll come out of this more resilient