So far, the trail leads through Tornado Cash—a cryptocurrency mixer often used to obfuscate transactions—and then onward to several decentralized exchanges. However, one slip-up by the hackers has given investigators a glimmer of hope.
They’ll tell you that monsters aren’t just the ones in the code. Galactic Monster Quest Hacked
In the end, that might be the most powerful exploit of all. If you were affected by the Galactic Monster Quest hack, resources are available: Visit the official StellarForge incident page at stellarforge.com/security, join the Project Phoenix support Discord, or report financial losses to your local authorities and the FBI’s IC3. So far, the trail leads through Tornado Cash—a
One GMQ community moderator, known only as “NebulaWatch,” described the moment the attack became visible: “I was watching the leaderboard. One wallet ID kept appearing every second. Level 1, Level 1, Level 1—then suddenly Level 99 with a full squad of Voidborns. I thought it was a visual bug. By the time I pinged the devs, the market was already flooded.” StellarForge Studios CEO Mira Chen released a video statement 12 hours after the breach, visibly shaken. “We built Galactic Monster Quest for the players. We wanted to prove that blockchain gaming could be fair, transparent, and fun. Last night, that trust was violated not just by hackers, but by a failure in our own security protocols. I am deeply sorry.” The official GMQ servers remain offline as of this writing. The game’s Discord server—home to 1.2 million members—has been locked down to prevent phishing scams that have already begun targeting worried players. In the end, that might be the most powerful exploit of all
What followed was one of the most sophisticated and damaging exploits in the history of blockchain-integrated gaming. This is the full story of how Galactic Monster Quest got hacked, what was stolen, and whether the game—or its community—can ever recover. Initial reports suggested a simple server breach. But as cybersecurity analysts and white-hat hackers began dissecting the code, a far more terrifying picture emerged.
These Voidborn monsters were then instantly liquidated on secondary marketplaces like OpenSea and Magic Eden, netting the perpetrators an estimated $14.2 million in cryptocurrency before anyone hit the panic button.