In a major escalation within the cryptocurrency gambling sector, BC.GAME, a leading online betting platform, has publicly identified a hacker responsible for exploiting a vulnerability in a third-party game integration. The breach resulted in the illicit withdrawal of $4,326,700. To facilitate the recovery of funds, the company has issued a global bounty of $500,000 USD for any credible information leading to the perpetrator’s identity. The announcement was made via BC.GAME’s official account on X (formerly Twitter). The platform detailed that the attacker targeted a specific flaw in an external game hosted on their site, allowing them to siphon assets undetected until a recent internal audit flagged the discrepancy.
The Exploit and Subsequent Market Losses
The investigation centers on the wallet address 0xA5e4F8141Cb2759CeA58F28cF2d0AB21b98580cA, which BC.GAME asserts was used to move the stolen proceeds. Blockchain monitoring service @EyeOnChain was the first to report suspicious activity linked to this address, noting an initial influx of approximately 1.7 million USDC.
In a high-stakes move, the hacker used these funds to open a massive leveraged short position on Ethereum (ETH), effectively betting against its price. The trade involved a leverage equivalent to roughly 15,457 ETH (valued at $31 million at the time).
However, the strategy backfired:
- As the price of ETH surged, the hacker’s position faced rapid partial liquidations.
- The initial 1.7 million USDC holding plummeted to just 171,000 USDC in less than 20 hours.
- The failed trade resulted in an estimated loss of $1.53 million for the attacker.
Key Evidence and Bounty Details
BC.GAME has confirmed that the hacker utilized the invite code “MMREFCSI”, likely through the platform’s HYPE referral system. This detail is currently being treated as a primary lead for digital forensics teams.
To incentivize the community, the platform is offering:
- A $500,000 Reward: For verifiable leads leading to the apprehension of the individual or group.
- Open Participation: The bounty is open to cybersecurity experts and players worldwide.
Community and Industry Response
The incident has drawn the attention of prominent blockchain investigator ZachXBT, who has offered to facilitate the submission of leads. While some in the crypto community have criticized the platform’s KYC (Know Your Customer) protocols for allowing such large withdrawals, others view the hacker’s massive trading loss as a swift form of “on-chain justice.”
BC.GAME, known for its focus on responsible gambling and partnerships with organizations like GambleAware, has not yet named the specific third-party provider responsible for the vulnerability. The company is currently working to patch the exploit and has advised users to remain vigilant regarding their account activity.
The industry recently witnessed a chilling example of this trend in a violent $2.4 million crypto robbery, where a trader was physically targeted and forced to transfer their holdings. Whether through sophisticated third-party software flaws or direct physical confrontation, the need for heightened security measures for crypto investors has never been more critical.
