So like the title says, our project got hacked, we don't even know the attack vector, how the wallets were accessed and the funds drained, we hired a security company and we're waiting on their report and following up with legal action as soon as we have some answers and IP addresses.
For now, I - a non-technical member of the team- have a question, is there a possibility to cancel the tokens he stole without having to migrate to a new contract? He used the tokens to drain our pool on the dex we're using, so it stands to reason that any liquidity we use to repopulate the pool will be drained in a similar manner.
The best option is to find out what the issue was with the code and start over by deploying on a new chain like Candle. They have a developer bounty of 500k $CNDL for projects that deploy tokens and DApps on the chain. You can find out more at candlelabs dot org and use the referral GoTo838.