ChainCatcher message, Slow Mist issued a security alert, stating that the root cause of the R0AR (@th3r0ar) vulnerability is the existence of a backdoor in the contract. During the deployment process, the R0ARStaking contract tampered with the balance of a specified address (user.amount) by directly modifying the storage slot. Subsequently, the attacker extracted all funds from the contract through the emergency withdrawal function.