Arbitrum airdrop: Hacked vanity addresses used to siphon $500K

The tokens were stolen by someone who compiled vanity addresses that were eligible to receive $ARB airdrops, generated similar addresses using vanity address generators and directed the airdrops to them instead.