According to Detective DeFi Zachxbt – whom we met with the Wonderland case – at least thirty-one NFT projects could be at risk from “suspicious code”. He brought it up in a Twitter discussion posted on Tuesday, where he raised the issue about the NFT Thestarlab project, which was allegedly compromised for 197,175 Ether (ETH), worth $ 580,325 at the time of publication.
Zachxbt quoted fellow investigator MouseDev, who would come to this conclusion after examining the code behind Thestarlab, arguing that when the developers generated the smart contract, they stored two variables to indicate the owner. They would later replace one of the two with a null address to make it appear that they had given up, but they kept the other variable unchanged. Investigating this information, Zachxbt claimed to have discovered 31 NFT projects containing the alleged problematic smart contract, and all implemented by the same developer on Fiverr.
