KyberSwap hacker offers $4.6M bounty for return of $46M loot
The decentralized exchange KyberSwap has offered a 10% bounty reward to the hacker who stole $46 million on Nov. 22 and left a note of negotiation. The exchange wants 90% of the loot returned by 6 am UTC on Nov. 25.
On Nov. 23, KyberSwap alerted users that its liquidity solution, KyberSwap Elastic, was compromised and advised them to withdraw funds. In the meantime, on Nov. 22, the hacker made away with roughly $20 million in Wrapped Ether (wETH), $7 million in wrapped Lido-staked Ether (wstETH) and $4 million in Arbitrum (ARB) tokens. The hacker then siphoned the loot across multiple chains, including Arbitrum, Optimism, Ethereum, Polygon and Base.
KyberSwap hacker shared his openness to negotiate a compromise. Source: etherscan.io
After hiding the stolen funds, the hacker wrote an on-chain message directed to KyberSwap developers, employees, decentralized autonomous organization members and liquidity providers, stating, “Negotiations will start in a few hours when I am fully rested.”
KyberSwap team responded to the hacker and offered a 10% bounty. Source: etherscan.io
Following a day’s silence from both ends, KyberSwap responded to the hacker requesting the return of 90% of the stolen funds. The team acknowledged the skills of the hacker and laid down an offer:
“On the table is a bounty equivalent to 10% of users’ funds taken from them by your hack, for the safe return of all of the users’ funds. But we both know how this works, so lets cut to the chase so you and these users can all get on with life.”
If the hacker fails to pay back or respond to KyberSwap by 6 am UTC, Nov. 25, “you stay on the run,” said KyberSwap. The team is open to further discussion with the hacker via email.
Related: KyberSwap announces potential vulnerability, tells LPs to withdraw ASAP
A dissection of the recent KyberSwap hack by a decentralized finance (DeFi) expert suggests that the attacker used an “infinite money glitch” to drain funds.
Ambient exchange founder Doug Colkitt explained the KyberSwap attacker relied on a “complex and carefully engineered smart contract exploit” to carry out the attack.
1/ Finished a preliminary deep dive into the Kyber exploit, and think I now have a pretty good understanding of what happened.
— Doug Colkitt (@0xdoug) November 23, 2023
This is easily the most complex and carefully engineered smart contract exploit I've ever seen...
The attacker then repeated this exploit against other Kyberswap pools on multiple networks, eventually getting away with $46 million in crypto loot.
Magazine: This is your brain on crypto: Substance abuse grows among crypto traders
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
Bitcoin’s LTH Spending Signals New Accumulation Phase
Long-Term Holder spending hits minimum, aligning with Bitcoin accumulation and potential price growth.Bullish Indicators Add Strength to Price Outlook
US Ethereum ETFs Hit Record 3.91M ETH Reserve
: U.S. spot Ethereum ETFs reach a record 3.91M ETH, with BlackRock holding the largest share at 41%.BlackRock Leads, Grayscale FollowsInstitutional Adoption Gaining Momentum
Missed Ethereum’s ICO? Qubetics at $0.3370 Stands Out Among Best Cryptos to Buy This Month
Missed Ethereum’s early rise? Qubetics is in its final presale stage, offering real utility, reduced supply, and up to 4,349% ROI potential. Discover the best crypto to buy this month.Qubetics Interoperability: Cross-Network Access Without ComplexityEthereum’s Legacy and Qubetics’ PromiseThe Bottom Line
Polyhedra to Increase ZKJ Buybacks After ‘Financial Attack’
Polyhedra co‑founder pledges more ZKJ token buybacks after price crash triggered by a financial attack.What Caused the Crash?Upcoming Buybacks & Security MeasuresWhat This Means for ZKJ Holders
Trending news
MoreCrypto prices
More
