폴리네트워크 6억 달러 훔친 해커, 돈 돌려줬다
The hacker who stole $600M in cryptocurrency equivalent from the Chinese DeFi Poly Network recovered the stolen funds. The only exception was the $33.4M in USDT remaining in the wallet implicated in the hack, frozen by Tether immediately after confirming the attack.
Among the stolen funds were about $267 million in ETH equivalent, $252 million in BSC, and over $85 million in USDC stablecoins. The incident went down in history as the largest hack in the DeFi field in its entire history. The amount has managed to outshine even the infamous crypto exchange Mt. Gox.
The following happened, Poly Network team contacted the hacker on Twitter, urging him to realize that the funds he stole did not belong to the company, but to tens of thousands of people who are parts of the cryptocurrency community. They also threatened the hacker with consequences in court.
However, the burglar appeared to be more interested in fame than money. Because even one of the messages contained in the transactions he carried out read: “It could be a billion dollars if I transferred the remaining shitcoins to myself. Did I save your project? I'm not very interested in money, so I'm thinking about returning some tokens or just leaving them".
As a result of the commotion, the attacker received the addresses prepared by the Poly Network team of three multi-sig wallets, and by Friday morning had transferred all funds, except for $33.4 million USDT, since they cannot be transferred without the permission of the issuer. Tether management, in turn, said that it is already working to fix this problem. According to Tether's CTO, the team could burn the tokens and then simply re-issue them to transfer to the Poly Network. This is done primarily in order not to “pass” money through the hacker's wallets.
Despite the positive outcome, some security experts questioned the hacker's intention to recover the funds. According to them, he accidentally revealed his identity due to KYC while trying to transfer part of the money through one of the Chinese crypto exchanges Hoo. Thanks to this, Slowmist specialists were able to trace his data: IP, e-mail, and the “digital footprint” of his devices. Naturally, after this, the hacker had a simple choice: jail time or the return of the stolen funds. According to the attacker himself, Poly Network is a well-thought-out system that can handle large amounts of money, but it lacked work on errors, so he was happy to point out to them certain mistakes in the system.
The multi-million dollar hack of the DeFi project has become another reminder to the crypto community that decentralized finance still needs reliable protection. Regulators, on the other hand, were puzzled by the safety of investors and reiterated that the industry needed centralization. In such situations, the best hope for a refund is often just “centralized players” in the person of law enforcers and stablecoin suppliers, so there is some truth in their words.