Two EOS gambling platforms have been hacked in the last week. An amount totaling $250,000 USD. In the same week, another platform, EOSBet, paid out $600,000 to one user in a claimed ‘jack-pot,’ though some aren’t so sure. What’s going on? What’s with the EOS hacks?

EOS Hacks

The EOS smart contracts appear to be rather fallible. The first of the EOS hacks happened on DEOSGames. A user named Runningsnail kept winning $1,000 payments over and over again. Over a dozen times actually. Runningsnail would deposit 10 EOS and then win the jackpot 30 seconds later. The process happened over and over as though automated every 30 seconds.

DEOSGames confirmed that its smart contract had been hacked and that Runningsnail wasn’t just extraordinarily lucky.

Flaws in the Code

The second of the EOS hacks occurred on EOSBet. Whereby a heister made away with the much-bigger sum of $236,000 USD.

The hacker took advantage of a flaw in the code. This flaw meant they could bypass the esio.token ->transfer function, meaning their funds were not deposited to the smart contract. Subsequently, whenever they lost, they didn’t have to pay. However, if they won, they would win real funds that could then be cashed out.

Basically, the hacker was able to gamble risk-free and ensure they got, in essence, free money.