White Hat Recovers $1,5M from Moby Trade Protocol Hack on Arbitrum Network
- Ethical hackers recover $1,5M in DeFi attack.
- Moby Trade Protocol Suspends Operations After Exploit.
- Arbitrum beefs up security after series of DeFi attacks.
The first major attack of 2025 on the decentralized finance (DeFi) sector has mobilized ethical hackers and security experts. The Moby Trade protocol, based on the Arbitrum network, suffered an attack that resulted in the loss of $2,5 million, but a swift action by a white hat hacker recovered $1,5 million in USDC.
We just automatically hacked the hacker and rescued 1.4M USDC!
100% of funds were returned to the project owner
> 🧵 Here's how the hacker is whitehat-hacked pic.twitter.com/R3SF5hIZnh
— Tony KΞ (@tonykebot) January 9, 2025
The attack, which began with the exploitation of a compromised private key, allowed the attacker to alter smart contracts and use an emergency withdrawal function to transfer assets, including 207 WETH and 3,7 WBTC, to external wallets. According to the Beosin security team, the attacker exchanged the tokens for ETH before sending them to addresses on the Ethereum blockchain.
The partial recovery of the funds was made possible by the quick intervention of Tony Ke, a researcher at Solayer Labs and an expert in Maximal Extractable Value (MEV). Using a MEV bot, Ke identified a flaw left by the attacker in his own surrogate contract. This vulnerability allowed the bot to replicate the attack technique, rescuing $1,5 million in USDC.
“It was a race against time. We managed to save part of the funds, but unfortunately we missed the recovery of other assets by about 30 seconds,” Ke said.
The incident has prompted Moby Trade to temporarily suspend operations such as deposits and withdrawals while a full investigation is conducted. Furthermore, the protocol team has assured users that losses will be compensated.
Similar attacks have also recently been reported on Orange Finance and Stryke Protocol, both on the Arbitrum network, highlighting a worrying pattern of smart contract exploitation on the platform. In the case of Orange Finance, a compromised private key was identified as the source of the issue.
The DeFi market, particularly on the Arbitrum network, continues to attract developers and hackers alike. Despite the challenges, white hat hacking initiatives like Ke’s demonstrate that effective and proactive solutions are possible even in critical situations.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
Why should we have confidence in the AI Agent track?
AI Agent breaks the narrative logic of purely "on-chain" building Lego stacking towers in the past, presenting a new infrastructure construction demand that supports AI Agent's autonomy, immortality, and multimodal collaboration, integrating both on-chain and off-chain elements.
Bitcoin’s legitimization, BlackRock shatters records, buy-in soars: Spot bitcoin ETFs mark one-year anniversary
With one year in the books, spot bitcoin ETFs have generated over $660 billion in trading volume.After amassing over $50 billion in assets under management (AUM) in the past year, BlackRock’s IBIT fund emerged as the clear leader among spot bitcoin ETFs.Bitcoin’s standing as an accepted asset class took on new shape thanks to the new financial instruments.
Dewhales' partnership x TreeHouse
Flockerz Soars Past $9.5M In Presale – Only 11 Days Left To Buy Vote-To-Earn Meme Coin At Low Price
Trending news
MoreCrypto prices
More
