Orion was the sufferer of a reentrancy assault (through which an attacker repeatedly withdraws funds from a wise contract), PeckShield stated in a Twitter message. Gal Sagie, CEO of cybersecurity firm Hypernative, stated the attacker deployed a faux token known as ATK which was used to control the orion swimming pools. It utilized a self-destructing sensible contract.