HomeDeFiHacker Steals $2 Million from a DeFi Protocol, Gets a Job

Hacker Steals $2 Million from a DeFi Protocol, Gets a Job

-

Bedrock left an on-chain message for a hacker who plundered $2 million from its uniBTC vaults.

In a surprising turn of events, a protocol victimized to a $2 million exploit offered employment to the hacker who stole the funds. The hack was first reported by Dedaub, a cybersecurity firm, on September 26. 

“Our team reported a *critical* issue on Bedrock protocol,” Dedaub wrote on X. “The issue was exploited some hours later, but damage was contained.” The vulnerability lay in minting wrapped bitcoin token uniBTC, a “~$75m asset (on Ethereum alone, plus much more on 8+ other chains).”

Bedrock announced that it was aware of the hack and has taken action to mitigate it and safeguard user funds. “We want to reassure everyone that the underlying wrapped BTCs and BTCs in reserves are secure,” adding, “The root cause has been identified and we are taking steps to address it.” The protocol also mentioned that it would reimburse users affected by the hack and is working with white hat hackers and auditors to reclaim the funds.

While that sounds like actions taken by any hacked protocol, Bedrock went a step further to hire the hacker, working to mitigate cybersecurity risks and protect the protocol. It left an on-chain message for the hacker to see and reply. “We would like to communicate with you inviting you to become a white hat for the recent incidence. Would you be interested in working with us and making the protocol more secure?” The hacker is yet to reply.

Shezmu Negotiated for the Reimbursement of Stolen Funds

In other interesting hacking news, Shezmu, a yield-generating DeFi protocol, successfully negotiated for the return of $5 million from the hacker who pulled the stunt. While Shezmu initially offered 10% of the stolen funds as rewards, the hacker asked for 20%. The protocol obliged, and the hacker returned the assets.

FOLLOW US

Upcoming Events

Most Popular