Audit log

Every state-changing event for Munchables: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

1. #1publishby system:backfill

   2026-05-20 15:41:08Z
   Score: ? → ? (no score change)
   anchoranchored

   chain

   ●mainnet-betaslot 421,014,711

   sig

   W7atPdnJk1vh…YJKKuVNScopyexplorer ↗

   hash

   5MAt4mTSTofT…yi1HJXb6copysha256 → base58

   verifying row…full verify ↗

   canonical bytes (4997 B) ▸

   {"actor":"system:backfill","investigation_id":"5d7315a6-ce77-4a91-8b18-103e04faad57","kind":"publish","page_slug":"munchables","published_at":"2026-05-20T15:41:08.855Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Munchables","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://www.theblock.co/post/284883/web3-gaming-platform-munchables-loses-62-5-million-in-exploit-zachxbt"},{"credibility":3,"name":"","type":"other","url":"https://cointelegraph.com/news/nft-game-munchables-blast-exploited-62-million"}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://www.coindesk.com/tech/2024/03/27/munchables-exploited-for-62m-ether-linked-to-rogue-north-korean-team-member"},{"credibility":3,"name":"","type":"other","url":"https://rekt.news/munchables-rekt"},{"credibility":3,"name":"","type":"other","url":"https://www.halborn.com/blog/post/explained-the-munchables-hack-march-2024"},{"credibility":3,"name":"","type":"other","url":"https://thedefiant.io/news/defi/analysts-believe-munchables-usd63m-exploit-was-internally-engineered"}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://www.theblock.co/post/284883/web3-gaming-platform-munchables-loses-62-5-million-in-exploit-zachxbt"},{"credibility":3,"name":"","type":"other","url":"https://www.halborn.com/blog/post/explained-the-munchables-hack-march-2024"},{"credibility":3,"name":"","type":"other","url":"https://unchainedcrypto.com/third-party-blast-bridges-disabled-after-munchables-loses-62-million-in-exploit/"},{"credibility":3,"name":"","type":"other","url":"https://rekt.news/munchables-rekt"}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://cryptoslate.com/munchables-recovers-62-5-million-in-user-funds-after-exploit-linked-to-north-korean-hacker/"},{"credibility":3,"name":"","type":"other","url":"https://decrypt.co/223644/blast-nft-game-munchables-recovers-62-million-exploit"},{"credibility":3,"name":"","type":"other","url":"https://cointelegraph.com/news/zachxbt-onboarded-custodian-return-funds-defi-exploit"},{"credibility":3,"name":"","type":"other","url":"https://cryptodaily.co.uk/news-in-crypto/observers:munchables-will-re-release-after-62m-hack-but-rollback-security-issues-linger"}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://www.coindesk.com/opinion/2024/03/27/the-munchables-hack-is-way-worse-than-it-seems"},{"credibility":3,"name":"","type":"other","url":"https://www.halborn.com/blog/post/explained-the-munchables-hack-march-2024"},{"credibility":3,"name":"","type":"other","url":"https://cryptonews.net/news/security/29526952/"},{"credibility":3,"name":"","type":"other","url":"https://github.com/tayvano/lazarus-bluenoroff-research/blob/main/hacks-and-thefts/munchables.md"}]}],"sources_used":[],"summary":"Munchables is a Blast-chain NFT game that suffered a $62.5 million exploit on March 26, 2024, when a contractor later attributed to North Korea exploited a backdoor they had embedded in the project's upgradeable smart contracts before launch. The developer surrendered private keys and the full sum was recovered within approximately 24 hours, but the incident exposed fundamental failures in contractor due diligence and smart contract architecture.","timeline":[{"date":"2022-01-01","event":"A developer later linked to the Munchables exploit was briefly hired by Pixecraft Studios, described as 'sketchy,' and let go within a month.","source":""},{"date":"2024-03-21","event":"The Munchables Lock smart contract was upgraded to an unverified implementation address, later identified as part of the attacker's preparation.","source":""},{"date":"2024-03-26","event":"The exploit was executed: approximately 17,413 ETH (~$62.5M) was withdrawn by the rogue developer using a pre-planted fraudulent 1,000,000 ETH balance in storage slots.","source":""},{"date":"2024-03-26","event":"Munchables announced the breach on X at approximately 9:33 pm UTC and stated it was tracking the exploiter.","source":""},{"date":"2024-03-26","event":"ZachXBT identified the attacker's address and four GitHub accounts (NelsonMurua913, Werewolves0493, BrightDragon0719, Super1114) believed to be North Korean-linked.","source":""},{"date":"2024-03-26","event":"Within approximately 11 minutes of ZachXBT's public identification, the developer agreed to return all funds and surrendered private keys.","source":""},{"date":"2024-03-27","event":"Blast founder Pacman confirmed that the recovered assets had been secured in a multisig controlled by Blast core contributors.","source":""},{"date":"2024-03-27","event":"Munchables announced full fund recovery; community rollback proposals for the Blast chain were not pursued.","source":""}]},"v":1}

   Verify offline (run on your own machine)

   python -m src.verify_decision d26f5809-a84e-4789-86d7-af8e47043736copy