Hacker behind $610 million crypto hack conducts AMA — claims returning the money was always ‘a part of the plan’
hackerbehind the $611 million crypto hackof the Poly Network was “forced to play the game.”
- According to him, the plan was always to return the money but not before the platform’s bugs came into the limelight.
- So far, less than half of the stolen money has been returned.
When spotting the bug, I had a mixed feeling [sic]. Ask yourself what to do had you [been] facing so much fortune [sic]. Asking the project team politely, so that they can fix it? Anyone could be the traitor given one billion! I can trust nobody!
The mysterious entity, whose real identity is still unknown, stole Ethereum, Binance Smart Chain, and Polygon tokens from the Poly Network on August 10. The platform allows users to exchange one
Once the hack was discovered, the Poly Network — with help from a cybersecurity firm called SlowMist — was able to track down the attacker's IP address. However, according to the perpetrator, the IP address is only temporary.
Regardless, it did lead to them returning the stolen money. Albeit, in installments.
Why did the hacker attack the Poly Network?
The person behind the breach shared a three-page ‘ask me anything’ (
“Cross chain hacking is hot,” they replied to the question on why the Poly Network was chosen as the target.
The hacker claims that he spent a good while looking for a vulnerability to exploit on the Poly Network. Once they spotted a bug, uncertain of whether they could trust anyone within the platform’s team, the attacker decided to take things into their own hands.
The AHA moment came just before I was about to give up. After debugging all night, I crafted a single message on the ontology network.
Why is the hacker returning the money?
Of course I knew there are fake DeFi coins, but I didn’t take it seriously since I had no plan [of] laundering them.
And, leaving the vulnerability out there could leave funds open to other attacks by hackers who have no plans to return the money. “What if they patch the bug secretly without any notification,” the Poly Network exploiter, who hacks ‘for fun’, wrote in one of their responses.
So far, $260 million is back in Poly Network’s coffers. Another $269 million in Ethereum and $84 million in Polygon is yet to make its way back but only after the attacker has a nice long chat with the Poly team.
I would like to give them [Poly Network] tips on how to secure their networks, so that they can be eligible to manage the billion [dollar] project in the future.
The pending money is currently invested in stablecoins so that it can earn some interest and buy the hacker some time to negotiate.
Crypto markets are recovering, and mining companies in North America are raking in the gains
CoinDCX becomes India’s first crypto unicorn as it joins the leagues of Binance, Robinhood, Ripple, and others
- An Indian credit card user spends ₹14,500 a month on average – 20x more than debit card users
- Arjun Tendulkar not included in Mumbai squad for Ranji Trophy knockout matches
- Ransomware attacks rise 13% over the last one year – 4 out of 5 breaches attributed to organised crime, says report
- iPhone 14 could get costlier as it’s rumored to feature a more advanced front camera
- Aether Industries Limited IPO — Checkout company balance sheet, performance and analysts views in 10 points