SIR.trading begs hacker to return $255K or ‘no chance for us to survive’
The founder of the recently hacked decentralized finance protocol SIR.trading has issued an emotional plea to the attacker, urging them to return approximately 70% of the stolen customer funds. Without the recovery of th...
Archive context
Older archive item. Useful for background and entity history, but not a fresh market-moving signal.
The founder of the recently hacked decentralized finance protocol SIR.trading has issued an emotional plea to the attacker, urging them to return approximately 70% of the stolen customer funds. Without the recovery of these funds, the protocol is unlikely to survive.
“Here is my proposal, keep $100k as a fair share for your critical bug find, and return the remaining,” SIR.trading’s pseudonymous founder “Xatarrer” wrote in a March 31 onchain message to the attacker following the $355,000 hack on March 30.
“We’ll call it even. No legal games, no drama,” they added.
Xatarrer said that SIR.trading was built on the back of four years of late-night coding and $70,000 from friends and believers without any additional venture capital funding.
“We grew to $400k TVL organically without any advertising. If you keep 100% of the funds, there is no chance for us to survive.”Xatarrer even praised the hacker for the sophisticated hack, stating that it was “almost beautiful if it wasn’t for all the funds people lost.”
Source: SIR.trading
The hacker hasn’t responded and has already transferred the stolen funds through to Ethereum privacy solution Railgun, according to data from Ethereum block explorer Etherscan.
Xatarrer initially said on March 30 that the SIR.trading team intended to keep the protocol up and running despite the setback. “We’ve already started planning our next steps. Those impacted by the hack will not be forgotten,” it said on March 31.
Hack resulted from feature added to Ethereum’s Dencun upgradeThe hacker targeted a callback function used in the protocol’s “vulnerable contract Vault” which leverages Ethereum’s transient storage feature.
The hacker managed to replace the real Uniswap pool address used in this callback function with an address under the hacker’s control, allowing them to redirect the funds in the vault to their address by repeatedly calling the callback function until all of the protocol’s total value locked was drained.
The transient storage feature was added to Ethereum in the March 2024 Dencun upgrade as a solution to offer users lower gas fees than gas typically required for regular storage.
Related: DeFi hacks drop 40% in 2024, CeFi breaches surge to $694M — Hacken
SIR.trading’s documentation shows that it was billed as “a new DeFi protocol for safer leverage” to address some of the challenges that often occur in leveraged trading — such as volatility decay and liquidation risks.
It comes as crypto lost to exploits and scams fell to $28.8M in March, blockchain security firm CertiK said in a March 31 X post. Around $4.8 million was subtracted from that figure after hackers involved in the 1inch Resolver incident returned the stolen funds.
Crypto exploits and scams had one of their worst months in February, headlined by the $1.4 billion Bybit hack.
Magazine: Should crypto projects ever negotiate with hackers? Probably
Why this matters
This cryptocurrency story adds another data point to the current market tape and is useful when read alongside nearby source coverage.
Original source
Read on CointelegraphRelated market context
Morgan Stanley Launches Spot Bitcoin, Ethereum, and Solana Trading on E*TRADE
Morgan Stanley has completed the rollout of spot crypto trading on E*TRADE, giving eligible clients the ability to buy, sell, and...
Bitmine nears its Ethereum buying limit – Now it needs demand to make the bet pay off
Bitmine plans to slow its Ethereum purchases as its holdings approach 5% of the cryptocurrency’s supply, ending a year of rapid ac...
Across Protocol confirms Solana bridge attack, says user funds are safe
Across Protocol confirmed an attack on its Solana bridge deployment, disabling deposits while assuring users their funds remain sa...
Ethereum Weakens As ETF Optimism Runs Into A Cooler Policy Backdrop
Ethereum is under pressure again as traders reassess how much of the ETF optimism has already been priced into the market. The mov...
Kraken Borrow Update Turns Idle Collateral Into A More Flexible Trading Tool
Kraken is updating its borrow product in a way that speaks directly to one of the central questions for active crypto traders: wha...
Ethereum News: BlackRock, JPMorgan Builds Make ETH a Wall Street Asset, Tom Lee Argues
In the lastest Ethereum news, Fundstrat’s Tom Lee is arguing that Ethereum’s next major move has nothing to do with crypto-native...