After rescuing @Veildotcash we did the same for @FOOMCASH with exactly the same ZK vulnerability. Around $1.1 million in FOOM tokens was recovered by us from the FoomLottery contract on Ethereum and returned to the project before malicious actors could exploit the bug.