Hacker behind $610 million crypto hack conducts AMA — claims returning the money was always ‘a part of the plan’
hackerbehind the $611 million crypto hackof the Poly Network was “forced to play the game.”
- According to him, the plan was always to return the money but not before the platform’s bugs came into the limelight.
- So far, less than half of the stolen money has been returned.
When spotting the bug, I had a mixed feeling [sic]. Ask yourself what to do had you [been] facing so much fortune [sic]. Asking the project team politely, so that they can fix it? Anyone could be the traitor given one billion! I can trust nobody!
The mysterious entity, whose real identity is still unknown, stole Ethereum, Binance Smart Chain, and Polygon tokens from the Poly Network on August 10. The platform allows users to exchange one
Once the hack was discovered, the Poly Network — with help from a cybersecurity firm called SlowMist — was able to track down the attacker's IP address. However, according to the perpetrator, the IP address is only temporary.
Regardless, it did lead to them returning the stolen money. Albeit, in installments.
Why did the hacker attack the Poly Network?
The person behind the breach shared a three-page ‘ask me anything’ (
“Cross chain hacking is hot,” they replied to the question on why the Poly Network was chosen as the target.
The hacker claims that he spent a good while looking for a vulnerability to exploit on the Poly Network. Once they spotted a bug, uncertain of whether they could trust anyone within the platform’s team, the attacker decided to take things into their own hands.
The AHA moment came just before I was about to give up. After debugging all night, I crafted a single message on the ontology network.
Why is the hacker returning the money?
The plan was never to keep the $611 million, according to the hacker. They only took the money fearing that the Poly Network would fix the bug secretly, without informing anyone.
Of course I knew there are fake DeFi coins, but I didn’t take it seriously since I had no plan [of] laundering them.
And, leaving the vulnerability out there could leave funds open to other attacks by hackers who have no plans to return the money. “What if they patch the bug secretly without any notification,” the Poly Network exploiter, who hacks ‘for fun’, wrote in one of their responses.
So far, $260 million is back in Poly Network’s coffers. Another $269 million in Ethereum and $84 million in Polygon is yet to make its way back but only after the attacker has a nice long chat with the Poly team.
I would like to give them [Poly Network] tips on how to secure their networks, so that they can be eligible to manage the billion [dollar] project in the future.
The pending money is currently invested in stablecoins so that it can earn some interest and buy the hacker some time to negotiate.
Crypto markets are recovering, and mining companies in North America are raking in the gains
CoinDCX becomes India’s first crypto unicorn as it joins the leagues of Binance, Robinhood, Ripple, and others
- 'Harry Potter' had a chance to represent Indian kids like me, but all we got were Parvati and Padma Patil's atrocious Yule Ball outfits
- Manchester United owners are getting drawn to the world's biggest cricket league – here's why
- Elon Musk sparks another Shiba Inu rally ‘to the moon’ — other Shiba coins follow suit
- IPL teams are reportedly launching fan tokens, which will give followers a bigger say in club decisions
- Google now wants to teach you a new word daily with this new feature
- Samsung Galaxy Z Flip 3 review – foldable phones are ready for the mainstream
- COVID-19 pandemic killed 80,000-180,000 health workers till May 2021, says WHO
- Breast Cancer Awareness Month: How a Pink Ribbon sparked a worldwide campaign