White hat hackers have returned $32.6M worth of tokens to Nomad bridge

Published at: Aug. 8, 2022

Mere hours after the Nomad token bridge published an Ethereum wallet address last week for the return of funds following a $190 million hack, whitehat hackers have since returned approximately $32.6 million worth of funds. The vast majority of funds consisted of stablecoins USD Coin (USDC), Tether (USDT) and Frax, along with altcoins. 

According to research published by Paul Hoffman of BestBrokers, the vulnerability of the Nomad protocol was highlighted in Nomad's recent audit by Quantstamp on June 6 and was deemed "Low Risk." As soon as the exploit was discovered, members of the public joined the attack by copy-pasting the initial hack transaction, which was akin to a "decentralized robbery." More than $190 million worth of cryptocurrencies were drained from Nomad in less than three hours.

The attack came just four months after the project raised $22.4 million in a seed round in April. As told by Hoffman, the attack took advantage of a wrongly initialized Merkle root, which is used in cryptocurrencies to ensure that data blocks sent through a peer-to-peer network are whole and unaltered. A programming error effectively auto-proved any transaction message to be valid.

Related: Nomad reportedly ignored security vulnerability that led to $190M exploit

Not all participants of the heist were capitalizing on the opportunity, though. Almost immediately after the hack began, whitehat hackers copied the same transaction hash as the original hacker to withdraw funds for their safe return. Conversely, one hacker allegedly used their Ethereum Domain Name to launder the stolen funds, leading to the possibility of cross-verification with Know-Your-Customer information also utilizing the domain. 

Nomad Bridge Funds Recovery ProcessDear white hat hackers and ethical researcher friends who have been safeguarding ETH/ERC-20 tokens,Please send the funds to the following wallet address on Ethereum: 0x94A84433101A10aEda762968f6995c574D1bF154 pic.twitter.com/UF623JSZ8u

— Nomad (⤭⛓) (@nomadxyz_) August 3, 2022
Tags
Technology
Blockchain
Cryptocurrencies
Defi
Related Posts
The new episode of crypto regulation: The Empire Strikes Back
The latest news has left the decentralized finance community in a collective fetal position. Responding to the threat of increased regulatory oversight, leading decentralized exchange Uniswap recently restricted the trading of certain tokens. Earlier in July, Dan M. Berkovitz, chairman of the Commodity Futures Trading Commission (CFTC), said that DeFi derivatives platforms might contravene the Commodity Exchange Act (CEA): “Not only do I think that unlicensed DeFi markets for derivative instruments are a bad idea, but I also do not see how they are legal under the CEA.” Most worrisome of all is the initial version of the United States …
Technology / Aug. 27, 2021
Fetch.ai (FET) hits a 2-year high after DeFi integration and Bosch partnership
Artificial intelligence and machine learning are changing the face of commerce, computing and other technologies on a daily basis. In its most basic form, the information gathered by artificial intelligence is really just data that can be used to make interpretations and blockchains are built for the storage and transmission of data. Fetch.ai (FET) is a “Cambridge-based artificial intelligence lab” that has the goal of using distributed ledger technology to build a decentralized machine learning platform capable of securely transacting any form of data globally. Data from Cointelegraph Markets and TradingView shows that the price of FET has surged 720% …
Technology / March 7, 2021
KuCoin Labs Launches $100 Million Venture Capital Fund To Empower Early-Stage Metaverse Projects
KuCoin Labs, the company behind the world's sixth-largest cryptocurrency exchange by trading volume with more than 500 crypto assets listed, announced on Wednesday that it would be launching a $100 million metaverse fund for early-stage projects. The money is also available for entities that develop blockchain-based games, nonfungible tokens, and decentralized applications. In addition, Kucoin will also provide business incubation services, branding, incentives, and business partnerships for developers selected into the fund. Johnny Lyu, CEO of Kucoin, said the following in a prepared statement obtained by Cointelegraph: "KuCoin Metaverse Fund will be launched to accelerate the evolution of the Internet …
Adoption / Nov. 17, 2021
From DeFi year to decade: Is mass adoption here? Experts Answer, Part 2
Yat Siu of Animoca Brands Yat is the executive chairman and co-founder of Animoca Brands, which delivers digital property rights to the world’s gamers and internet users, thereby creating a new asset class, play-to-earn economies and a more equitable digital framework contributing to the building of the open Metaverse. “2021 was the year of NFTs, and in the second half of the year, we saw a growing emphasis on GameFi. This trend will continue well into 2022. Real mass adoption of DeFi will happen via GameFi, which will explode in growth during 2022 as the potential for mass financial inclusion …
Decentralization / Dec. 22, 2021
Bank of International Settlement will test DeFi implementation in forex CBDC markets
According to a new announcement on Wednesday, the Bank of International Settlement, or BIS, along with the central banks of France, Singapore, and Switzerland, will be embarking on a new initiative dubbed "Project Mariana" in its exploration of blockchain technology. Project Mariana intends to use decentralized finance, or DeFi, protocols to automate foreign exchange markets and settlement. Project Mariana explores using automated market makers for the cross-border exchange of hypothetical CHF, EUR and S$ wholesale CBDCs. It's a #BISInnovationHub joint venture with the French, Swiss & Singapore #CentralBanks@banquedefrance @MAS_sg @SNB_BNS https://t.co/GsNLpXZlsD pic.twitter.com/2tMitZcNF2 — Bank for International Settlements (@BIS_org) November 2, …
Technology / Nov. 2, 2022