Single Entity Claims 40% of Airdrop Using 7,500 Wallets
On-chain analytics firm Bubblemaps has identified a sophisticated Sybil attack that compromised the fairness of Fabric Protocol's ROBO token airdrop. According to its analysis, a single entity used a network of approximately 7,500 wallets to claim 199 million ROBO tokens. This hoard represents 40% of the entire airdrop supply and was valued at an estimated $8 million when the token launched on February 27.
The attack's execution reveals a coordinated and patient strategy. Roughly two months before the token launch, the new wallets were funded with similar amounts of ETH sourced from at least seven different exchanges. These funds were then moved through multiple layers of intermediary wallets before the final addresses claimed the ROBO tokens. This repeatable pattern of funding and transaction flows strongly indicates a single operator, not thousands of independent users.
Centralized Supply Creates $8M Overhang for Token
The attack has created a severe centralization issue for the ROBO token, concentrating a massive supply in the hands of one actor. This $8 million stake introduces a significant overhang of potential selling pressure, which could destabilize the token's price if the holder decides to liquidate their position. This risk directly undermines the primary goal of an airdrop: to foster a decentralized and engaged community.
While Bubblemaps found no evidence linking the attack to the Fabric Protocol team, which it described as "open and cooperative," the event exposes critical vulnerabilities in airdrop designs. Despite the findings, ROBO's price has remained resilient, trading around $0.025. However, the concentration of tokens poses a long-term threat to investor confidence and the project's stated goal of building a robotics-focused network layer. The incident serves as a stark warning to the industry about the persistent challenge of securing token distributions against determined actors.
