25/03/2022 Marvel NFT partner Veve closes its marketplace after an in-app token exploit

Twitter users have complained that the exploit has resulted in a sharp decline in the price of their digital collectibles over the past week.

Marvel NFT partner Veve closes its marketplace after an in-app token exploit

Twitter users have complained that the exploit has resulted in a sharp decline in the price of their digital collectibles over the past week.

Veve, a nonfungible token (NFT) marketplace with licensed digital collectibles, faced an exploit on Tuesday, resulting in millions of gems (in-app tokens) being acquired illegally. The platform is quite popular among mainstream brandssuch as Marvel,Pixar, and Coca-Cola, which have chosen Veveas their official launch partner.

In an official tweet published on Wednesday, Veve acknowledged the exploit on its platform and said that the attackers managed to acquire a ā€œlarge amountā€ of gems illegitimately. The app-based NFT platform has shut the marketplace along with the gems purchase option until the investigation is complete.

Gems are the VeVe in-app token that users exchange for collectibles during drops or in the Market. Early reports suggest that the exploiters behind the attack managed to mint millions of gems without having to pay for it by exploiting a bug in buying mechanism. One user wrote that their friend accidentally purchased gems using an expired credit card and the transaction went through.

The platform has also restricted several user accounts that reportedly tried buying the cheap gems from fraudulent accounts. While the NFT platfrom didnā€™t disclose the exact amount of gems that were exploited, a Twitter user has claimed the figure could be in millions and might be the biggest heist on the platform. Veve didnā€™t respond to Cointelegraphā€™s requests for comments at the time of publishing.

The Twitter user also shared a timeline of events of the exploit where Veve first registered the largest three-day buying of the in-app token gems, followed by a crash in the price of the token off-app by half, falling from 0.5 to 0.25 and then the marketplace went into maintenance.

The gem exploits on Veve also resulted in a massive decline in the price of the listed NFTs on the platform, where one user realized why their NFT value plunged by 80% within a week after Veveā€™s official Twitter post.

Arts

https://cointelegraph.com/news/marvel-nft-partner-veve-closes-its-marketplace-after-an-in-app-token-exploit