• CertiK and Cyvers experts have announced that Duelbits has been hacked.
• The attacker probably used a private key.
• Duelbits cryptocasino was hacked as a result of a private key compromise, CertiK experts reported. The damage is estimated at $4.6 million.

#CertiKSkynetAlert 🚨

Last night @Duelbits was exploited and assets worth ~$4.6m were taken in a possible private key compromise (PKC).

All assets were swapped for ETH which currently sits in EOA 0x0428 👇 pic.twitter.com/MzNqAzBExb

• CertiK Alert (@CertiKAlert) February 14, 2024

According to the data, the hack took place between February 13 and February 14, 2024. The attacker used a private key to access the account, withdrew crypto assets from it, and then converted them to Ethereum.

The information was also confirmed by Cyvers analysts:

🚨ALERT🚨Our system has detected multiple suspicious transactions with @Duelbits !!!

Suspicious address received $4.6M from @Duelbits  wallets on $ETH and $BNB chains!

Please contact us!
More information will follow soon!#CyversAlert pic.twitter.com/59ByDLjvrc

• 🚨 Cyvers Alerts 🚨 (@CyversAlerts)  February 13, 2024

In a comment to Crypto News , platform representatives noted that the attacker likely used the FixFloat service when converting assets. The attacker’s address is available at the link.

At the time of writing the administration of the Duelbits project has not commented on the situation. At the same time, the last publications on the casino page in X (formerly Twitter) are dated February 14, 2024.

A similar incident occurred with the gaming platform PlayDapp. In this case, the attacker also gained access to the private key, with the help of which he conducted the issuance of a native token. The damage is estimated at $290 million.