Hacker behind $600m DeFi attack returns funds
A hacker has returned assets to the Poly Network after they stole $611m of users’ funds in the biggest DeFi attack to date.
The hacker today returned $256m of stolen funds after details about their identity were found by the blockchain analytics firm SlowMist Technology. In a statement, SlowMist said they had “discovered the attacker’s mailbox, IP, and device fingerprints through on-chain and off-chain tracking.”
SlowMist also identified the cause of the attack explaining that the hacker exploited a loophole in Poly Network’s smart contracts which enabled them to withdraw unlimited funds from other users’ accounts.
Poly Network then sent a message to the hacker via social media urging them to give back the stolen assets. They warned: “The amount of money you hacked is the biggest one in the defi history. Law enforcement in any country will regard this as a major economic crime and you will be pursued.”
In response the hacker began sending encrypted messages from the Poly Network Exploiter address used for the attack.
One message said “Ready to Return the funds!” while a follow up note bragged about the attack saying “It’s already a legend to win so much fortune.”
The Poly Network team created three addresses where they asked the hacker to deposit the funds. One address today received $1m worth of assets in three incremental payments worth $1m, $1k and $1. A further $1.1m was returned a few hours later before $254m was returned on Binance Smartchain this afternoon.
$180m of stolen assets remain at the Poly Network Exploiter address, Tether froze $33m worth of USDT connected with the hackers account and the remainder of the missing money has been moved to separate addresses.
Read more: More than $600m lost in worst ever DeFi hack