A white-hat hacker has returned 322 Ethereum (around $900,000) after an exploit drained Multichain users of more than $3 million worth of crypto this week.
Up to $1.5 million worth of Ethereum is still at large, however.
Multichain is a cross-chain router protocol that bridges users between thirty different blockchains, including Bitcoin, Ethereum, and Terra.
This week’s critical vulnerability appears to have affected six tokens on the protocol: Wrapped ETH (WETH), Peri Finance Token (PERI), Official Mars Token (OMT), Wrapped BNB (WBNB), Polygon (MATIC), and Avalanche (AVAX).
On Monday, Multichain announced on Twitter that the problem had been “reported and fixed.”
However, more attackers swooped in after the announcement and were still able to exploit the protocol through the same vulnerability, with one hacker stealing as much as $1.43 million.
1/A critical vulnerability that affected 6 tokens (WETH, PERI, OMT, WBNB, MATIC, AVAX) has been reported and fixed.
All assets on both V2 Bridge and V3 Router are safe, and cross-chain transactions can be done safely.
— Multichain (Previously Anyswap) (@MultichainOrg) January 17, 2022
The White Hat Multichain hacker
In the badlands of crypto, critical vulnerabilities aren’t just exploited by criminals for self-interested motives, they also draw the attention of blockchain vigilantes called “white hat” hackers, who exploit vulnerabilities to report them and collect a bounty.
One of the attackers that attacked Multichain after Monday’s announcement was a white hat.
The hacker returned 322 ETH (around $900,000) to an affected user and kept 62 ETH ($173k) as a bounty for themselves.
The hacker also returned 52 ETH ($139,000) to Multichain and kept around 12 ETH as a bounty.
Around 527 ETH, or just under $1.5 million, is still missing, however.
On Thursday, Multichain CEO and co-founder Zhaojun took to Twitter and confirmed ZenGo wallet co-founder Tal Be’ery’s theory that the vulnerability was due to the fact that Multichain’s bridge contracts need a pause function to prevent loss of funds in the future.
Elon Musk and President Donald Trump are no longer besties.
Everyone knew the brofest between the Richest Man in the World and the Most Powerful Man in the World was never going to end well. And that makes it all the more awe-inspiring when it finally ends—not with a bang, but with a fusillade of nasty shitposts.
So pull up your chair, and enjoy the antics of America's Finest.
Most of us can remember the lovely sendoff President Trump gave the celebrated sperm donor Elon Musk (cue Green Day) on...
The website for a crypto wallet linked to President Donald Trump’s meme coin went dark for many internet users Thursday, hours after the project received a cease and desist letter from another Trump-linked crypto project threatening legal action.
Earlier this week, Trump’s meme coin project launched a crypto wallet in partnership with major NFT marketplace Magic Eden, offering a chance at financial rewards in the form of TRUMP tokens to users who signed up for the product’s waitlist. The wallet...
It was early April, during the middle of a conversation with Decrypt at Cantor Fitzgerald’s swanky midtown Manhattan headquarters, that Tether CEO Paolo Ardoino abruptly asked to pause the interview. The reason? He’d noticed a “weird message” on the laptop open in front of him.
After twenty seconds of silence in the conference room, Ardoino’s face flashed a big grin. Reports were circulating that Circle, one of Tether’s chief competitors, might tap the brakes on its long-planned IPO.
”People w...
