Kiloex從黑客那裡收回了被盜的資金

分散的金融（DEFI）空間對黑客，地毯拉和漏洞並不陌生。

Key Notes

關鍵說明

Decentralized Finance (DeFi) protocols have been a target for hackers throughout the crypto winter. One protocol that was recently struck by an exploit is decentralized exchange (DEX) KiloEx.

在整個加密冬季，分散的金融（DEFI）方案一直是黑客的目標。最近被剝削的一種協議是分散交換（DEX）KILOEX。

The exchange was hacked on April 15, with the hacker managing to steal $7.5 million.

該交易所於4月15日被黑客入侵，黑客設法竊取了750萬美元。

According to reports by crypto news outlet TokenPost, the hacker was able to exploit KiloEx’s pricing oracles to accumulate a large amount of tokens at a highly reduced price.

根據加密新聞媒體Tokenpost的報導，黑客能夠利用Kiloex的定價甲骨文，以高度降低的價格積累大量令牌。

Like other DEXs, KiloEx relies on pricing oracles to obtain price data for the listed tokens and determine the exchange rates for the trading pairs. However, the hacker discovered a vulnerability that allowed them to manipulate the pricing oracles.

像其他DEX一樣，Kiloex依靠定價甲殼來獲取列出的令牌的價格數據，並確定交易對的匯率。但是，黑客發現了一個脆弱性，使他們能夠操縱定價甲骨文。

This manipulation enabled the hacker to deceive the exchange’s smart contracts into executing trades at significantly skewed prices, resulting in the transfer of a huge sum of tokens to their own wallet.

這種操作使黑客能夠以明顯偏斜的價格欺騙交易所的智能合同，從而使大量令牌轉移到自己的錢包中。

KiloEx's Response to the Breach

Kiloex對違規的反應

After the attack, the DEX noted on their X account that they would offer a 10% bounty of $750,000 if the hacker returned 90% of the loot. They also mentioned that they were watching the addresses linked to the attack and intended to “freeze the stolen funds promptly.”

襲擊發生後，DEX在其X帳戶上指出，如果黑客退還了90％的戰利品，他們將提供750,000美元的10％賞金。他們還提到，他們正在觀看與襲擊相關的地址，並打算“迅速凍結被盜資金”。

To Hacker:

到黑客：

Our investigation, supported by law enforcement, cybersecurity agencies, and multiple exchanges & bridge protocols, has critical information about your activities.

我們的調查在執法部門，網絡安全機構以及多個交流和橋樑協議的支持下，擁有有關您的活動的關鍵信息。

We are actively monitoring your addresses (0x551f3110f12c763d1611d5a63b5f015d1c1a954c,…)

我們正在積極監視您的地址（0x551F3110F12C763D1611D5A63B5F015D1C1A954C，…）

— KiloEx (@KiloEx_perp) April 15, 2025

- Kiloex（@kiloex_perp）2025年4月15日

They further disclosed that they would work with the authorities and cyber security partners to resolve the issue. Trading activities were paused immediately after the breach was unearthed by KiloEx.

他們進一步透露，他們將與當局和網絡安全夥伴合作解決該問題。違規行為被Kiloex發掘出來後，交易活動立即暫停。

KiloEx Recovers Stolen Funds

Kiloex恢復了被盜資金

The hacker who carried out the exploit returned the stolen tokens to KiloEx. A few days later, the DEX announced on its X page that it had fully recovered the funds and planned to reward the white hat for choosing to return them.

進行剝削的黑客將被盜的令牌歸還給Kiloex。幾天后，DEX在其X頁面上宣布，它已經完全收回了資金，併計劃獎勵白帽子選擇退還它們。

As a show of good faith, the DEX noted that it was giving the white hat a reward of 10% of the recovered tokens for highlighting the flaws of KiloEx’s security infrastructure. The DEX has also disclosed that it does not intend to pursue “further legal action” and considers the breach “resolved in good faith.”

為了表現出真誠的表現，DEX指出，這給白帽帶來了10％的恢復令牌的獎勵，以突出Kiloex的安全基礎設施的缺陷。 DEX還透露，它不打算採取“進一步的法律行動”，並認為違規行為“真誠地解決”。

Dear Community,

親愛的社區，

We are pleased to announce that we have successful recovery of all stolen funds related to the recent security incident. This outcome underscores our commitment to protecting user assets and fostering a secure ecosystem.

我們很高興地宣布，我們成功地恢復了與最近的安全事件有關的所有被盜資金。該結果強調了我們致力於保護用戶資產和培養安全生態系統的承諾。

1. Case Resolution Progress– The legal…

1。案件解決進度 - 法律…

— KiloEx (@KiloEx_perp) April 18, 2025

- Kiloex（@kiloex_perp）2025年4月18日

KiloEx appreciated its partners and community members for standing with them and has disclosed that it intends to continuously improve its security architecture.

Kiloex讚賞其合作夥伴和社區成員與他們同在，並透露，它打算不斷改善其安全架構。

Despite the positive resolution in this case, scams and hacks in the crypto world have been on the rise.

儘管在這種情況下有積極的解決方案，但加密貨幣世界中的騙局和駭客仍在上升。

A notable example is the Bybit hack that occurred some time ago, where North Korean-linked hackers were reportedly behind a major breach, highlighting the growing sophistication and international scale of crypto-related cybercrime.

一個值得注意的例子是一段時間以前發生的bybit黑客，據報導，與加密相關的網絡犯罪的越來越複雜和國際規模，與北朝鮮有聯繫的黑客遭到了重大攻擊。