top of page
ad cnp.png

Wintermute Becomes The Latest Victim Of DeFi Hacks, Loses $160M

Evgeny Gaevoy, the founder and CEO of Wintermute, a cryptocurrency market maker based in the United Kingdom, said that the company became the latest victim of decentralized finance (DeFi) hacks, losing approximately $160 million.

It has been reported that according to Etherscan, over 70 different tokens have been transferred to “Wintermute exploiter,” including $61,350,986 in USD Coin (USDC), 671 Wrapped Bitcoin (wBTC), which is around $13,030,061, and $29,461,533 Tether (USDT). The largest token sum appears to be USDC.

However, the company’s over-the-counter and centralized finance operations were not affected, as the hacker(s) drained funds from its DeFi operations. Gaevoy stated that the market maker is solvent with twice the stolen amount in equity left, stressing that users’ funds are safe.

The report said that Wintermute, an algorithmic market maker working with digital assets such as Cryptocurrencies, is a registered company in the United Kingdom, located in Cheshire, and regulated by the Financial Conduct Authority. According to Companies House, Evgeny Gaevoy is director with “more than 25%, but not more than 50%” of shares.

Ajay Dhingra, the Head of Research and Analytics at smart exchange Unizen, said:

"The nature of the exploit suggests that Wintermute’s hot wallet was compromised. The attacker cleverly manipulated the bug in the smart contract. This incident again brings focus on tightening the screws around smart contract security, which is an uncharted territory as of now."

Likewise, Gaevoy, a Dutch national, suggested that the hack could be treated as a white-hat hack. The perpetrator may contact Wintermute to share the vulnerabilities they discovered to avoid repeat hacks in the future.

Thus, white hat hacks are common in crypto. Exchanges, market markers and sometimes companies reward hackers bounties in the form of cash or job positions. As the Ether (ETH) address for the Wintermute Exploiter is public, the address has been spammed by crypto enthusiasts, stating messages like “plz give. I’m very poor. Even $5k would be amazing.”

Source: Cointelegraph




bottom of page