The on-chain trading terminal DEXX was attacked, with multiple users confirming that their funds were transferred. This attack involved multiple chains, and the types of assets transferred were numerous, leading to a short-term rapid decline in several meme coins.

Dexx is a full-chain memecoin trading platform that supports various on-chain assets such as SOL, ETH, TRX, BASE, BSC, etc. It mainly promotes its features such as on-chain mobile profit and loss stop, hot concept push, smart wallet tracking push, doubling the original investment, one-click prevention of slippage, and one-click buy/sell follow.

In response to the DEXX user funds theft incident, Slow Mist founder Yu Xian stated on the X platform that the stolen group is related to those using DEXX for dog coin/ meme trading, and private keys belong to DEXX's centralized custody, which must have been leaked. The method of leakage and other investigations will be disclosed. In no time, there was a wave of scolding from major meme communities:

'Woken up in the middle of the night, found that DEXX was stolen of $20,000, all the efforts of a month have gone to waste, I will never touch this kind of centralized wallet again';

'I was speechless, just registered and transferred 100 SOL in, and then it was stolen. No wonder so many KOLs recommended it';

'I sold off all my meme coins. This time many wallets were stolen, and hackers will dump the coins, and after the fallout, all meme coins could be dumped and collapse';

Number of people stolen is large, and the amount is significant

Due to the large number of users who were stolen from this time, a ‘rights protection group’ was established immediately and began registering stolen information. The figure below shows the record of stolen funds (as it is filled out by the stolen users, only part of the data has been confirmed as true). Meanwhile, Slow Mist founder Yu Xian also stated: 'Based on the data submitted by community users, we calculated that the losses from the DEXX theft reach millions of dollars, and these funds are currently dispersed across multiple different hacker addresses.'

Other community users have also reported a total amount exceeding ten million dollars, and since the complete statistics on addresses have not yet been finished, the exact amount stolen cannot be finally determined, but from community feedback, many users have reported losses in the thousands, even tens of thousands, and millions.

DEXX's official response did not indicate a rug pull, but there are widespread suspicions of internal theft.

After the theft incident occurred, the official DEXX Chinese account posted a reply on X platform: 'Currently, DEXX has noticed the issue reported by multiple users regarding tokens being transferred away, and several professional security audit teams are already conducting analysis and investigations. The team is working hard to resolve this, there is no rug. Future progress will be communicated to everyone promptly through site notifications and X/Telegram.'

DEXX's official Chinese response to the large-scale user theft incident

Personal information of DEXX's founder has also been exposed. DEXX founder Roy (@honza 204) subsequently responded to the theft incident, stating: 'I will pay to compensate, isolated some users, there is no rug, we are investigating, unable to reply one by one, don’t worry.'

DEXX founder responds to the large-scale user theft incident

However, this reply currently has no further updates, and users are not buying it, questioning DEXX for deliberately running away and internal theft.

DEXX rose to popularity during this meme craze in a short time, mainly relying on KOL promotion to quickly acquire users. According to KOLs, the current bot offers very high rebates to quickly acquire users, with the highest even reaching 50%-60% of transaction fees, which is quite substantial in the current environment of frequent high-value transactions.

After the DEXX incident, many KOLs who previously crazily promoted DEXX and described it as 'the Binance on-chain' began to quickly delete posts and cut ties, with the most complaints from users directed at the X KOL drifter @youmin 8341 who previously flaunted exorbitant rebates.

After the incident, the drifter tweeted @ DEXX founder first and expressed that his rebates had never been withdrawn, leading to users joking in line, 'Two sticks broke brotherhood, the record is all brother's names.'

Safety advice

Meme undoubtedly is the hottest sector with the most wealth creation opportunities in this bull market. On-chain operations and using various bots have also become a daily habit for users. The incident of 'DEXX being attacked, users' funds being stolen' should serve as a wake-up call for the industry. To avoid incidents similar to 'the hard-earned Sol from months of effort being used to work for hackers,' we have compiled some safety advice and hope everyone will be extremely cautious about on-chain asset security:

Do not trust recommendations from others; study the product mechanism well. It is recommended to use a bot that does not store private keys on a server;

Choose bots that have been operating for a long time, have a strong team, and have no record of security incidents;

Do not click on unfamiliar links in the TG group, do not reply to any private messages;

Regardless of the tools used, it is recommended to withdraw and transfer large transaction amounts to self-custody wallets;

Previously, incidents of theft have occurred with Bananagun, Unibot, and others; DEXX will not be the last.

Remember, in the dark forest of Web3, only those who survive until tomorrow have a chance.#NFT市场回暖