EOS dApp Airdrop Botched, 1 Billion Se7en Tokens Issued Then ‘Magically Disappeared’
EOS Developer Exploits Smart Contract to Create 1 Billion Tokens
A decentralized application (dApp) on EOS has botched an airdrop on the EOS network. The gambling platform is known as Se7ens and has been in the middle of a controversy since a community member was able to credit himself over a billion tokens after exploiting a smart contract.
The Se7ens platform is a dice game based on the EOS platform that was distributing 3.5 billion tokens to EOS holders. Each participating account could receive 10,000 tokens, however, they sent more.
In the smart contract, it is possible to see that it ‘mistakenly’ credited an EOS account with a billion tokens.
The affected user said that the company was later able to modify the funds he had on his account without any problem. He mentioned that the company did not even process a transaction but they were able to take away the 1 billion tokens he ‘created.’
The user explained on the matter:
“After I published [the situation] on Reddit, [SE7EN] silently cut my balance to 100,000 tokens and called it a bug bounty. I didn’t even receive any transaction in my history, and the tokens have magically disappeared. So the team assigns themselves a freedom to modify user balances at will. I wonder how they plan to be listed on an exchange with such treatment of their assets.”
Apparently, the company did not use the standard, prebuilt EOS functions that are made specifically for sending tokens. What happened is that the tokens were distributed in users’ accounts without making a transaction. Indeed, there is no need for the platform to confirm these token transfers.
However, this is not the first time that an EOS dApp experiences problems. The Trybe dApp had access to users’ accounts to retrieve tokens that were mistakenly sent by a smart contract related to an airdrop.
EOS has been involved in different controversies in the last days. Some of these issues were related to the governing process that the platform has and with these kinds of airdrops that fail due to poorly written smart contracts.