On September 25, the Telegram Bot project Banana Gun released an update on the "theft" situation, saying that its EVM and Solana robots have been back online, with no restrictions except for a 2-hour transfer delay. A total of 11 users were affected, with a loss of $3 million. All affected users will be fully compensated by the BananaGun treasury, and will not be compensated by selling tokens. After a comprehensive investigation by the BananaGun development team and external experts, it was found that the Telegram message oracle used by Banana Gun had a potential vulnerability, which may have led to the attack. After fixing this issue, Banana Gun implemented enhanced security measures and reactivated the robot. This root cause analysis is supported by the following two points: The nature of the attack (manual transfer); The victim received a notification of the transfer within the robot.