Share this article

DeFi Lender bZx Reclaims $8M Stolen in Sunday's Attack

DeFi lending project bZx has been able to recover about $8 million in cryptocurrency from an attacker who stole the funds after exploiting a code bug over the weekend.

Updated Sep 14, 2021, 9:55 a.m. Published Sep 14, 2020, 4:00 p.m.

The hacker was exposed sometime on Monday.

Decentralized finance (DeFi) lending project bZx has been able to recover about $8 million in cryptocurrency from an attacker who stole the funds after exploiting a code bug over the weekend.

STORY CONTINUES BELOW

Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters

By signing up, you will receive emails about CoinDesk products and you agree to our terms of use and privacy policy.

Paris Fotis, a spokesperson for the project, said bZx had been able to track down the attacker using his or her on-chain activity.
The attacker returned the funds after being exposed, according to Fotis.
bZx said in an incident report that $8 million worth of cryptocurrency had been stolen Sunday by an attacker who exploited a code bug to mint the protocol's interest-earning iToken, which was used to redeem, and walk away with, digital assets held in various lending pools.
bZx’s official Twitter account announced earlier today that funds had been restored.
This was the third, and the largest, attack on the bZx protocol so far this year.
bZx's Kyle Kistner declined to tell CoinDesk anything about the attacker's identity when we initially wrote about the attack early Monday.
Fotis reiterated this, telling CoinDesk the project wouldn't reveal the attacker's identity for "legal reasons."

Hacks DeFi bZx CoinFlash

Paddy Baker

Paddy Baker is a London-based cryptocurrency reporter. He was previously senior journalist at Crypto Briefing.

Paddy holds positions in BTC and ETH, as well as smaller amounts of LTC, ZIL, NEO, BNB and BSV.