The South Korean NFT and game development platform apparently suffered a private key leak that hackers used on Feb. 9.
PlayDapp announced just before 11:00 am UTC on Feb. 13 that it had halted its smart contract to take a screenshot for migration as the hack of the South Korean Web3 game development platform and nonfungible token (NFT) marketplace continued into the new week. The problem was first noticed on Feb. 9.
Blockchain security firm PeckShield noticed an apparent private key leak at PlayDapp after 200 million of its native PlayDapp (PLA) tokens, worth $31 million at the time, were minted. “It seems that deployer’s address has been compromised and attacker’s address is added as a minter,” fellow blockchain security firm Cyvers Alerts explained in Feb. 9 X post.
On Feb. 10, PlayDapp posted a message on X addressed to the hacker, offering a reward for the return of the stolen contracts and assets and threatening to contact law enforcement, including the United States Federal Bureau of Investigation, if no response is received. PlayDapp’s customer service was down between Feb. 9 and Feb. 12.