Hacker returns stolen $25 million in BTC, ETH to dForce

Hacker returns stolen $25 million in BTC and ETH to DeFi platform

In an unexpected development, a hacker returned almost US$25 million [AU$39.55 million] in BTC and ETH to the dForce platform.

Mindao Yang, the founder of dForce, reported on April 22 that they have been able to “recapture” nearly all the stolen funds in a hacking attack that occurred on April 19.

Yang said that this was through the “efforts collaboratively made by our partners, law enforcement, investors, the community, and our team members.”

Hacker returned ‘most’ of stolen funds

The reports available supported Yang’s statement. The hacker returned most of the stolen funds and gave it back in the form of different cryptocurrency tokens.

In total, the assets returned to the network only account for roughly $24 million – a million short of what was hacked.

According to a tweet from Lendf.Me, all the stolen funds that have been returned will be moved to a “separate recovery account” for the meantime.

Yang took his share of responsibility for the attack:

“To say the very least, this entire ordeal has been incredibly emotional and taxing. It was personal for me on so many different levels. I will never forget this day, and I know that I need to work harder so that it never happens again.”

The next steps for Lendf.Me

According to Yang, the following steps will be taken immediately:

  • Smart contracts on the Lendf.Me platform will be disabled. There will be an asset recovery login for users, which they can use to check how much their outstanding assets and liabilities are prior to the attack.
  • Drafting of the asset redistribution plan will be outlined and published soon.
  • Consultations with independent security experts will be conducted, including full security audits to redeploy a new decentralized money market protocol that is less vulnerable to the same attack.

On the day of the hack, Yang posted in his blog that the hackers tried to get in touch with them. Yang said:

“We are doing everything in our power to contain the situation. We have contacted law enforcement in several jurisdictions, reached out to asset issuers and exchanges to track down and blacklist the hacker(s)’s addresses, and engaged our legal teams.”

Tracking the hacker’s trails

The community is still puzzled by the motive of the hacker’s sudden return of the stolen funds.

The hacker’s address sent an empty ETH transaction to the Lendf.Me’s admin address with a note that only says “email.” Possibly, it pertains to Yang’s statement that the hacker has been reaching out to them.

The hacker reportedly only used VPN.

According to Sergej Kunz, chief executive officer of 1inch.exchange, the hackers inadvertently revealed important details that pointed to them while they were trying to do the exchanges.

Apparently, as initial investigations revealed, the hackers were not able to completely cover their trail. The investigation found that the requests pointed to a single IP address in China.

“He seems to be a good programmer, but an inexperienced hacker,” said Kunz.

Images courtesy of Vijay Putra/Pexels, Morthy/Stockvault

Micky is a news site and does not provide trading, investing, or other financial advice. By using this website, you affirm that you have read and agree to abide by our Terms and Conditions.
Micky readers - you can get a 10% discount on trading fees on FTX and Binance when you sign up using the links above.