SUPERFORTUNE: GUA Security Incident Confirmed as Signer’s Private Key Leak; Approximately 2,784 ETH Transferred to Three Ethereum Addresses

2026-05-29 14:56 Source： x.com Event types： Online/Update 、 Security/Hacker 、 Regulation/Compliance

SUPERFORTUNE AI released a 24-hour investigation update stating that the May 27 GUA security incident was not, as previously suspected, address poisoning—but rather resulted from the leakage of private keys belonging to multi-signature signers. The attacker then forged valid signatures pointing to a malicious address and exploited the “premium address” feature—where the malicious address shared the same first four and last four characters as the legitimate address—to mislead the remaining signers into completing the signing process via the Safe interface.

Related projects

Ethereum ETH
Key
Safe Safe
SUPERFORTUNE GUA