The post Unizen Hack Update: Over $2 Million Laundered by Hacker Through Tornado Cash appeared first on Coinpedia Fintech News
The hacker from the March 2024 Unizen exploit has over $2 million laundered through the Tornado Cash mixer. The cyber security firm Peckshield Alerts reported that the attacker has laundered 865.4 ETH, equivalent to about $2.16 million obtained from the exploit wallet.
This activity occurred 151 days after the first attack which was a loss of $2.1 million owing to an ‘approve issue’ that occurred on Unizen’s platform. Also, all efforts to get a hold of the money back from the hacker have been in vain as the latter hasn’t responded to the team.
The laundering process started with the movement of 2,179,859 DAI from the exploit wallet to another punk wallet which is unknown, addressed as “0X866. . . 84d7. “ The laundered DAI was then exchanged for ETH in uniswap as it continued its journey through Tornado Cash in 26 transactions. This was able to clear both of the exploiter’s pockets with the gainers remaining with their pockets filled.
The March 2024 attack
The attack happened on 9, March 2024, by using the “approve issue” vulnerability in the Unizen’s platform, and the firm lost $2. $1 million of USDT, which was then swapped to DAI. PeckShield had discovered the vulnerability and informed Unizen but by the time the latter received the alert, the damage was done.
Unizen has tried reaching out to the hacker requesting him to return all the stolen assets and promising to increase the bounty amount to 20% for the assets to be returned, but the hacker never responded. This team tried to make contact with the hacker through on-chain messages in a bid to make a plea that the hacker return the stolen funds in return for a reward.
The hack that happened in the Unizen platform is similar to the Nomad Bridge hack to show that no platforms are immune to cyberattacks. The Nomad Bridge was attacked for about $200 million in August 2022 following a similar lack of vigilance, underlining the need to constantly update and improve security measures. The hacker was smart enough to buy the dip and bought thousands of ETH swapping the stolen DAI.
Also Check Out: WazirX Hack Update: CoinDCX Unveils Rs 50 Crore Investor Protection Fund!