GoPlus reports that a misconfigured verification key enabled forged zkSNARK proofs, allowing attackers to drain FOOMCASH tokens across Base and Ethereum networks.
FOOMCASH suffered an exploit on its smart contracts deployed on Base and Ethereum, leading to losses of 24,283,773,519,600 FOOM worth about $2.26 million. According to security firm GoPlus, the breach was caused by a misconfigured verification key, which allowed attackers to forge zkSNARK proofs and withdraw tokens from the contract without authorization. The attack severely impacted the FOOMCASH ecosystem across both chains.