Superfortune Says Private Key Leak Led to 2,784 ETH Theft

Superfortune states a signer private key leak caused the May 27 GUA incident, in which 14.98 million tokens were sold for 2,784 ETH; the funds remain traceable across three Ethereum wallets.

ETH

USDT

28d ago

Fact Check

The official SUPERFORTUNE AI X post (@SUPERFORTUNE888, status 2059818459421372485) directly confirms the core claim: an investigation into a May 27, 2026 security incident affecting $GUA, with preliminary findings of a multisig transaction redirecting unlocked tokens (intended for the airdrop claim contract) to a hacker address. Odaily and PANews corroborate this account. CryptoSlate market data confirms the price near $0.29 with ~75% drop, consistent with the claim's $1.70 to ~$0.29 collapse. The headline's framing ('multisig address may have been tampered with, redirecting unlocked tokens') accurately reflects the official statement.

Summary

Superfortune said its May 27 GUA security incident was caused by a leaked signer private key, rejecting insider involvement and address poisoning as the cause. According to the project, 14.98 million unlocked GUA were sold, contributing to a roughly 75% to 78% price drop, and were swapped for about 2,784 ETH worth $5.66 million. Superfortune said the attacker submitted a forged-address transaction 43 minutes after the legitimate one, and the stolen assets were distributed across three Ethereum wallets that the company says remain traceable. The company also said roughly 170,000 USDT was bridged out during the incident.

Terms & Concepts

Private key: A cryptographic credential that controls access to a blockchain wallet. If leaked, an attacker can authorize transfers without the owner’s consent.
multisig transaction: A transaction from a wallet that requires approval from multiple parties before funds can be moved.
Bridge: A blockchain mechanism that moves assets between networks, often by locking tokens on one chain and issuing a corresponding version on another.