U.S. authorities have made a breakthrough in recovering funds lost to crypto crime, seizing $31 million in crypto tied to the 2021 hack of DeFi platform Uranium Finance.
The seizure comes after a coordinated effort by the U.S. Attorney's Office for the Southern District of New York (SDNY) and Homeland Security Investigations in San Diego, the SDNY announced in a tweet Monday.
SDNY and @HSISanDiego seize cryptocurrency worth approximately $31 million related to April 2021 hack of Uranium Finance. If you believe you have been a victim of this hack, please contact UraniumVictims@hsi.dhs.gov.
The hack, which took place on April 28, 2021, exploited a vulnerability in Uranium Finance’s smart contractssmart contracts, enabling the attacker to inflate the platform’s balance and extract $50 million in various cryptos.
The stolen funds included $36.8 million in BNB (BNB) and stablecoin Binance USD (BUSD), along with Bitcoin (BTC), Ethereum (ETH), Polkadot (DOT), Cardano (ADA), and Uranium’s native token U92.
The now-defunct DeFi platform was attacked during the transition of its protocol to the V2.1 version.
A bug in the platform's pair contracts—used to manage liquidity pairs in its automated market maker (AMM)—enabled the attacker to withdraw nearly all assets from the protocol.
AMMs are used in decentralized exchanges to enable people to trade cryptocurrencies directly with each other using pools of assets rather than relying on a traditional order book.
Following the theft, the hacker laundered the funds using the Ethereum-based coin mixer Tornado Cash before transferring them to centralized exchanges, creating a complex trail for authorities to follow.
The authorities have set up a dedicated email–UraniumVictims@hsi.dhs.gov–for victims of the exploit to report their grievances.
The platform’s website and social media have remained silent since the attack, leaving investors without recourse until now.
Pseudonymous on-chain crypto sleuth ZachXBT played a key role in uncovering the laundering process.
In a tweet today, ZachXBT referenced his December 2023 report detailing how the stolen funds were funneled through Tornado Cash and later used to purchase high-value trading cards, specifically "Magic: The Gathering" cards.
A few hours ago it was announced that $31M from the Uranium Finance exploit was seized by US law enforcement.
In Dec 2023 I posted an investigation for the $50m Uranium exploit on BSC detailing how the exploiter had laundered $10.5M via Magic The Gathering trading cards using a… pic.twitter.com/tJtY54V2vf
"Magic: The Gathering" trading cards are collectible cards used in a popular strategy game, with some rare cards fetching significant value.
ZachXBT's December investigation revealed that the hacker withdrew 11,200+ ETH, worth $25 million, from the coin mixer, moving it through multiple addresses before spending millions on trading cards, which were then sent to a U.S.-based broker.
This process involved converting ETH into a wrapped token (wETH) and then back again, making it harder for exchanges to detect and flag the transactions as suspicious, thus bypassing standard anti-money laundering (AML) checks.
Alongside his work on the Uranium Finance exploit, ZachXBT has helped expose those responsible for other major crypto attacks.
His analysis played a pivotal role in unmasking the perpetrators behind the recent Bybit exchange hack, one of the largest exploits in crypto history, in which over $1.4 billion in assets were stolen.
The crypto security investigator’s analysis traced the attack back to the Lazarus Group, a notorious North Korean hacking entity responsible for multiple high-profile crypto hacks in recent years.
Daily Debrief Newsletter
Start every day with the top news stories right now, plus original features, a podcast, videos and more.
Britain’s top financial regulator has proposed banning the purchase of cryptocurrency with any sort of borrowed funds, including credit cards.
A new discussion paper from the UK’s Financial Conduct Authority floated a plan this week to outlaw crypto firms from allowing British customers to buy crypto assets with a credit card. The proposed rule would also ban the purchase of crypto with any other form of credit, including loans and digital currency credit lines.
The move appears largely driven...
The UK's Financial Conduct Authority (FCA) is seeking views around crypto assets as part of steps towards more legislation.
The FCA specifically wants views on intermediaries, staking, lending, borrowing and DeFi, or decentralized finance, according to a discussion paper released today.
The plan, according to the FCA, is to setup clear crypto legislation as a way to boost confidence and support growth in the sector.
This is a first step towards legislation following a draft paper set out by the...
Senate Majority Leader John Thune (R-SD) initiated procedures Wednesday to expedite a vote on the first-ever regulatory framework for stablecoins in the U.S.
Thune is urging senators to fast-track the GENIUS Act, a bill that seeks to regulate stablecoins pegged to the U.S. dollar. The bill is sponsored by Senator Bill Hagerty and co-sponsored by Senators Tim Scott (R-SC) and Cynthia Lummis (R-WY).
It's part of a "critical first step" to deliver on President Donald Trump and the American people's...
