Telegram-based trading bot Banana Gun hacked for 563 ETH; BANANA token falls

September 19, 2024 09:39 AM PDT | By Invezz

Telegram-based trading bot Banana Gun hacked for 563 ETH; BANANA token falls — Image source: Invezz

Banana Gun hack: what we know so far

Banana Gun, launched in 2023, allows users to trade cryptocurrencies through automated and manual strategies directly via Telegram.

Its most popular feature, known as “sniping,” enables users to quickly buy tokens as soon as they are listed on decentralized exchanges, giving traders a competitive edge.

The platform supports major blockchains like Ethereum, Solana, and Base, and has processed over $6 billion in trading volume to date, attracting nearly 272,000 traders, according to Dune Analytics.

However, on the day of the hack, several users reported unauthorized transactions draining ETH from their wallets.

While the Banana Gun team quickly suspended the bot and announced an investigation, the exact cause of the breach remains unknown.

The team has not disclosed the full amount of funds lost but has maintained that fewer than 10 users were affected.

However, reports from community members suggest that dozens of users fell victim to the exploit, creating uncertainty around the extent of the damage.

As part of its response, the Banana Gun team confirmed that, after a thorough inspection of the back end, the router and database remained secure.

This has led to speculation that the vulnerability lay in the platform’s front-end interface, although the team has not confirmed this.

What is clear is that the exploit was executed manually, adding complexity to the attack and making it harder to trace.

Banana Gun hack: conflicting reports

The scale of the breach has been a point of contention.

Security firm Cyvers reported that hundreds of users may have been affected, while pseudonymous community member Yannick Crypto cited data from the Banana Gun team suggesting that fewer than 50 accounts were compromised.

Adding to the confusion, Cyvers researchers have ruled out the possibility of a smart contract vulnerability, which would typically affect a project’s entire user base.

This is different from previous exploits in the crypto space, such as the one involving MaestroBots, another Telegram-based trading bot that was hacked in October 2023.

That particular breach targeted the smart contracts and affected all users on the platform, making the Banana Gun incident unique in its method of attack.

Connection to AngelX?

The timing of the Banana Gun hack coincided with the resurgence of a notorious cryptocurrency wallet drainer known as AngelX.

This malicious toolkit, which re-emerged earlier in September, has been linked to numerous phishing scams and unauthorized wallet drains in the crypto space.

Cybersecurity firm Blockaid reported that AngelX had been spotted just weeks before the Banana Gun exploit, raising questions about whether the two incidents could be connected.

While it remains unclear if AngelX was involved in the Banana Gun attack, the toolkit’s track record is troubling.

An older version of AngelX, known as Angle Drainer, had been used to steal at least $25 million worth of crypto assets from over 35,000 wallets.

The newer iteration of AngelX has already been linked to more than 150 phishing scams since its re-emergence in late August, according to Blockaid.

Some cybersecurity experts have speculated that the Banana Gun breach may have involved multiple attack vectors, possibly including wallet drainers like AngelX.

However, without an official post-mortem report from the Banana Gun team, these claims remain speculative.

Telegram and crypto scams

The Banana Gun incident highlights the broader issue of security on Telegram, which has become a central hub for cryptocurrency trading and communication.

Telegram’s ease of use and popularity among crypto traders have made it an attractive platform for both legitimate projects and bad actors.

Cybersecurity firms such as SlowMist and Kaspersky have repeatedly warned about the growing number of phishing scams and malicious bots operating on the platform.

SlowMist founder Yu Xian recently pointed out that attackers are deploying large-scale phishing scams via Telegram messaging groups, often using malicious bots to siphon funds from unsuspecting users.

Similarly, Kaspersky flagged a series of unofficial Telegram bots targeting TON (The Open Network) tokens earlier this year.

As of now, Banana Gun remains offline while the team investigates the breach.

Users have been urged to secure their assets and refrain from conducting any transactions using the bot until further notice.

The team has promised to release an official post-mortem report once their investigation is complete, but the community is anxiously awaiting answers.

The post Telegram-based trading bot Banana Gun hacked for 563 ETH; BANANA token falls appeared first on Invezz

Disclaimer

The content, including but not limited to any articles, news, quotes, information, data, text, reports, ratings, opinions, images, photos, graphics, graphs, charts, animations, and video (Content) is a service of Kalkine Media LLC., having Delaware File No. 4697309 (“Kalkine Media, we or us”) and is available for personal and non-commercial use only. The principal purpose of the Content is to educate and inform. The Content does not contain or imply any recommendation or opinion intended to influence your financial decisions and must not be relied upon by you as such. Some of the Content on this website may be sponsored/non-sponsored, as applicable, but is NOT a solicitation or recommendation to buy, sell or hold the stocks of the company(s) or engage in any investment activity under discussion. Kalkine Media is neither licensed nor qualified to provide investment advice through this platform. Users should make their own enquiries about any investments and Kalkine Media strongly suggests the users to seek advice from a financial adviser, stockbroker or other professional (including taxation and legal advice), as necessary. Kalkine Media hereby disclaims any and all the liabilities to any user for any direct, indirect, implied, punitive, special, incidental or other consequential damages arising from any use of the Content on this website, which is provided without warranties. The views expressed in the Content by the guests, if any, are their own and do not necessarily represent the views or opinions of Kalkine Media.
The content published on Kalkine Media also includes feeds sourced from third-party providers. Kalkine does not assert any ownership rights over the content provided by these third-party sources. The inclusion of such feeds on the Website is for informational purposes only. Kalkine does not guarantee the accuracy, completeness, or reliability of the content obtained from third-party feeds. Furthermore, Kalkine Media shall not be held liable for any errors, omissions, or inaccuracies in the content obtained from third-party feeds, nor for any damages or losses arising from the use of such content. Some of the images/music that may be used on this website are copyrighted to their respective owner(s). Kalkine Media does not claim ownership of any of the pictures/music displayed/used on this website unless stated otherwise. The images/music that may be used on this website are taken from various sources on the internet, including paid subscriptions or are believed to be in public domain. We have used reasonable efforts to accredit the source (public domain/CC0 status) to where it was found and indicated it, as necessary.
This disclaimer is subject to change without notice. Users are advised to review this disclaimer periodically for any updates or modifications.