Completely baffles me how they could have overlooked that mint function despite having their smart contract audited thrice. Either the companies that audited the contract are grossly incompetent or there's a collusion somewhere.
Don't know which is more terrifying.