WazirX hacker moves $2.4M more, only $5M left now

The WazirX hacker has moved $2.4 million worth of crypto in just one hour. Data from Nansen shows that this time, they transferred 21.16 billion $BOB tokens, worth $800,000, and other smaller holdings, which have already been sold.

They also sent 6.7 million $CHR tokens, worth $1.6 million, to a separate address, which were sold almost immediately. In total, these sales netted 2,501 ETH, about $8.7 million, now sitting in a new address. 

Related: WazirX ups bounty for recovery of stolen funds to $23m

The hacker’s original address still has a little over $5 million left, including 78 million $CELR tokens valued at $1.16 million, 556 million $OOKI tokens worth $940,000, and 958,000 $FRONT tokens totaling $914,000.

Nansen says these could be sold any time, given the hacker’s recent activity.

WazirX was hit by this massive cyber attack around four days ago, losing over $230 million. The attackers compromised two of the four private keys tied to WazirX’s Ethereum multisig wallet, and from there, they swiped $234.9 million.

After stealing the funds, the hackers moved them to a new address. Suspiciously, some of these transactions involved Tornado Cash. WazirX quickly acknowledged the breach.

They launched a bounty program to recover the stolen assets, offering rewards for tracking, freezing, and recovering the funds.

Security experts pointed to the incident as another example of vulnerabilities in current DeFi systems. Discussions about the need for stronger security measures for hot wallets and multisig setups gained traction.

WazirX has said that it is actively working with its security team and blockchain detective ZachXBT to review all submissions for the bounty program. 

Aditya Chakraborty shared screenshots of a suspicious email claiming to be from WazirX, offering compensation through a new token called WZA.

This led to warnings about the need for vigilance against phishing attempts. And Zach was the one who traced the hacker.