Superfortune: The attack was caused by the signer's private key being leaked, not by address poisoning; it was not an inside job.

CoinFeed reported on May 29th that Superfortune, incubated by Manta, released an update on the X platform regarding the recent security incident, stating that the attack was not carried out by internal personnel, and no team members were involved. Claims that the team secretly sold tokens are false. The team also had no contact with Web3Port. The investigation confirmed that the attack was not address poisoning, but rather a leak of the signer's private key. The attacker independently held the private key and submitted a transaction with a forged address 43 minutes after the correct transaction. The forged address had the same first and last four characters as the correct address (starting with 0x70AE and ending with 5C15), used to disguise itself in the Safe interface preview. The stolen funds are fully traceable and are currently stored in three cold wallets on Ethereum, approximately 2784 ETH, with approximately 170,000 USDT transferred out via cross-chain transactions.