The SlowMist security team disclosed security bugs in the ReachMe platform. Researchers @im23pds and @T41nk_ found that they could successfully bypass the payment threshold of 1BNB (about $600), and only pay 0.01BNB (about $6) to send a private message to CZ. The vulnerability involves a payment verification logic flaw that allows attackers to construct special transactions to bypass fee detection. SlowMist has informed the project party of the vulnerability details according to industry norms, and the platform has completed an emergency repair.