BlockBeats News, June 14th, The Humanity project team issued a statement in the early hours of yesterday, regarding a cross-chain attack targeting the H token that occurred on June 8th. The attacker used a phishing email to gain access to a board member's device, stole the private key, and executed on-chain transactions. The report noted that the attack exhibited characteristics similar to those of a North Korean hacker group in terms of technical tactics and tooling.

The attack took place in an Ethereum and BNB Chain dual-chain environment. The attacker upgraded the Ethereum contract using the stolen key and transferred approximately 141.18 million H tokens. Simultaneously, they took over the ProxyAdmin contract on the BSC side and minted additional tokens. Subsequently, the attacker gradually sold off the related assets on Uniswap and PancakeSwap over about 8 hours, causing disruption to liquidity and token holders.

The project team stated that the attack vector was a targeted social engineering phishing email disguised as a transaction platform Bithumb's update notification. It misled the victim into opening a malicious attachment, which then installed a remote access trojan, ultimately achieving full control of the device to steal wallet data and private keys.

Regarding the current progress, the H contract on the Ethereum side has been frozen by an unaffected multi-signature mechanism. However, the deployment on the BSC side remains under the control of the attacker with the ability to continue minting. The project team mentioned that they are collaborating with exchanges and stakeholders to develop follow-up fixes and remedies, and advised users to beware of phishing links and scam messages.