QUADRIGA INITIATIVE
CRYPTO WATCHDOG & FRAUD RECOVERY PLATFORM
A COMMUNITY-BASED, NOT-FOR-PROFIT
$780 000 USD
APRIL 2025
GLOBAL
R0AR ECOSYSTEM
DESCRIPTION OF EVENTS
The R0AR ecosystem is a comprehensive, next-generation decentralized finance (DeFi) platform built to empower traders, NFT enthusiasts, and developers. At its core is the $1R0R token, now live on major decentralized exchanges like Uniswap, SushiSwap, PancakeSwap, and Balancer. It aims to fuel everything from staking and farming to governance and exclusive NFT-based utilities. R0AR’s mission is to restore trust and transparency to crypto by delivering a fully integrated suite of tools that combine AI trading, NFT access, and multi-chain interoperability.
Key features of the ecosystem include the R0AR xCHANGE, a cross-chain decentralized exchange supporting ERC-20 tokens, NFT storage, and yield farming without compromising user privacy or security. The R0ARchain, an L2 blockchain built on Optimism, supports scalable and secure DeFi and NFT applications. The R0ARacle AI and R0AR Wallet further enhance the platform by offering intelligent trading support and self-custody asset management across iOS, Android, and browser extensions.
In the NFT space, R0AR leads with the Executive R0AR Society (ERS)—a premium collection of lion-themed NFTs offering holders access to alpha signals, airdrops, and special DeFi privileges. The ecosystem continues to expand rapidly, with upcoming features like R0AR Pay (a crypto card solution), a Web3-native NFT marketplace, and a second generative NFT mint planned into 2026.
With a dedicated team, transparent funding practices, and a roadmap focused on innovation and community engagement, R0AR is building more than a platform—it’s creating a movement. From its AI-powered tools to its gamified financial products, R0AR is shaping the future of Web3 with power, privacy, and profit at its core.
One of the developers, who was not part of the core team, had embedded a backdoor at the launch of the protocol.
The exploit began with the deployment of a staking pool for the 1R0R/WETH pair on Ethereum, into which staking rewards were deposited. The attacker initially deposited only a minimal “dust” amount into the staking contract. However, a backdoor embedded in the constructor of the smart contract had already preset a large user.amount value for the attacker’s address. This manipulation allowed the attacker to bypass normal staking logic.
Using the emergency withdrawal function, the attacker triggered a massive fund extraction based on the falsified balance. The contract’s logic failed to validate the true stake input, enabling the unauthorized withdrawal. After executing the exploit, the attacker rapidly converted the stolen tokens into ETH.
To obscure the funds’ origin and complicate tracing, the ETH was split across several intermediary wallets. On-chain analysis also revealed that the attacker’s wallet had been initially funded through Tornado Cash, a privacy-focused mixer often used to conceal transactional histories. This confirmed a premeditated effort to hide the exploit trail and avoid detection.
There were two exploit swaps: 56,777,777.78 $1R0R for 262.5467437 ETH 17,280,208.12 $1R0R for 49.29706907 ETH
The R0AR team responded swiftly and publicly to reassure the community. They clarified on Twitter/X that the incident was not the result of an external hack but an internal betrayal by a rogue developer who had embedded a backdoor into the staking contract during deployment. The developer was immediately removed from the project, and all access privileges were revoked.
R0AR emphasized that, unlike many projects, they had not spent any of the presale funds and maintained a strong liquidity position. This allowed them to initiate a recovery plan, including the restoration of liquidity and a token buyback program to stabilize the ecosystem. They urged the community not to panic, stressing that the platform’s integrity and treasury reserves would ensure continuity and recovery. The team reaffirmed their commitment to transparency, long-term growth, and protecting their users, framing the exploit as a “bump in the road” rather than a crisis.
In the aftermath, R0AR initiated a structured buyback program, repurchasing $1R0R tokens from the open market to stabilize the token's value. This initiative led to a partial recovery, with the token's price increasing by over 250% from its post-exploit lows. As of April 18, approximately 100 million of the stolen tokens had been recaptured, with only two $1R0R tokens remaining unaccounted for. The team also conducted a detailed analysis of the exploit, providing transparency and clarity to the community
The token valuation has fully recovered.
The token continues to trade and has reportedly returned past the all-time high.
The R0AR ecosystem, a next-generation DeFi platform powered by the $1R0R token, was targeted in an insider exploit involving a backdoor embedded during the staking contract’s deployment. A rogue developer preset a falsified balance that enabled the extraction of funds via the emergency withdrawal function, ultimately swapping tens of millions of tokens for ETH and laundering them through Tornado Cash. Despite the breach, R0AR responded swiftly by revoking the developer's access, launching a recovery plan, and initiating a token buyback program. Thanks to its unspent presale funds and robust treasury, the platform stabilized quickly, regaining community trust. By April 18, nearly all stolen tokens had been recovered, and the token's value fully rebounded—reportedly surpassing its previous all-time high.
SlowMist - "The root cause of the @th3r0ar exploit was the presence of a backdoor in the contract" - Twitter/X (May 26)
The R0ar Homepage (May 26)
Th3 R0ar - "Defying a brutal exploit & a stagnant market, $1R0R didn’t just recover—it soared to an ALL-TIME HIGH!" - Twitter/X (May 26)
Th3 R0ar - "$1R0R is the SYMBOL! We are now listed on Uniswap, Sushiswap, Balancer and Pancakeswap. More DEX's and CEX's to come!" - Twitter/X (May 26)
"At this stage, we do not believe this to be an external exploit. One nefarious developer, external to R0AR core team, is seemingly behind the drain. They have been removed from the project with all accesses revoked." - Twitter/X (May 26)
Hacken - "A staking contract tied to Roar was exploited shortly after pools were created and rewards deposited. The attacker abused a flaw in emergencyWithdraw(), specifically how withdrawal amounts were calculated, to drain 100M $1ROR – then swiftly swapped to ETH." - Twitter/X (May 26)
The R0ar Exploiter - Etherscan (May 26)
Exploiter Swaps 56,777,777.78 $1R0R for 262.5467437 ETH - Etherscan (May 26)
Exploiter Swaps 17,280,208.12 $1R0R for 49.29706907 ETH - Etherscan (May 26)
@ethereum Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
@th3r0ar Twitter (May 26)
