巴西技术团队追回网络攻击中被盗的 20 万美元

包括 Web3 初创公司 Lumx 的 Afonso Dalvi 在内的一组巴西开发者与检察官 Alexandre Senra 合作，从一名泄露了受害者钱包的剥削者手中追回了 20 万美元。经过五个多月的不懈努力，他们开发了Flashbot，并利用“三明治攻击”捕获了锁定在DeFi应用程序中的被盗资金，并将其返还给受害者。

Brazilian Developers Recover $200,000 Stolen from Victim in Coordinated Effort

巴西开发商协力追回受害人被盗的 20 万美元

In a remarkable display of collaboration and technical prowess, a team of Brazilian software engineers, public prosecutors, and white hat hackers have successfully recovered over $200,000 in cryptocurrency stolen from a victim in a sophisticated cyberattack. The intricate operation, which spanned five months and involved a high-stakes race against time, culminated in the restoration of the victim's funds.

由巴西软件工程师、检察官和白帽黑客组成的团队出色地展示了协作和技术实力，成功追回了在一次复杂的网络攻击中从受害者身上窃取的超过 20 万美元的加密货币。这场错综复杂的行动历时五个月，是一场与时间的高风险赛跑，最终追回了受害者的资金。

The nightmare began when the victim's cryptocurrency wallet was compromised by an exploiter, who swiftly siphoned all available Ether (ETH). Desperate to recoup their losses, the victim reached out to public prosecutor Alexandre Senra for assistance. Recognizing the complexity of the challenge, Senra enlisted the expertise of Afonso Dalvi from Web3 startup Lumx and other developers to form a task force dedicated to recovering the stolen assets.

当受害者的加密货币钱包被攻击者攻破时，噩梦就开始了，攻击者迅速抽走了所有可用的以太币（ETH）。受害者迫切希望挽回损失，向检察官亚历山大·森拉寻求帮助。认识到这一挑战的复杂性后，Senra 聘请了 Web3 初创公司 Lumx 的 Afonso Dalvi 和其他开发人员的专业知识，组建了一个专门负责追回被盗资产的工作组。

The initial hurdle lay in persuading the victim to surrender their private key, a critical component for accessing the funds. "Convincing someone to hand over the keys to their treasure is a daunting task, and it took two weeks of meticulous negotiation," explained Dalvi.

最初的障碍在于说服受害者交出私钥，这是获取资金的关键组成部分。达尔维解释说：“说服某人交出宝藏钥匙是一项艰巨的任务，花了两周时间进行细致的谈判。”

Undeterred by the initial setback, the team devised a comprehensive strategy to retrieve the remaining funds, which were locked in three decentralized finance (DeFi) applications: Pendle, Radiant, and a staking service for the PAAL AI token.

该团队并没有被最初的挫折吓倒，而是制定了一项全面的策略来收回剩余的资金，这些资金被锁定在三个去中心化金融（DeFi）应用程序中：Pendle、Radiant 和 PAAL AI 代币的质押服务。

Pendle, known for its 54-day lock feature, presented a significant challenge. The exploiter had shrewdly utilized this mechanism to delay the team's access to the funds. However, the developers developed a flashbot, an automated tool designed to execute blockchain transactions swiftly, to capture the funds upon the expiration of the lock period.

Pendle 以其 54 天锁定功能而闻名，这是一个重大挑战。剥削者精明地利用了这一机制来拖延团队获取资金的时间。然而，开发人员开发了一个flashbot，这是一种自动化工具，旨在快速执行区块链交易，以在锁定期到期时获取资金。

"We initially attempted the capture manually, underestimating the exploiter's experience. He proved to be a formidable adversary," admitted Dalvi. "We swiftly pivoted our approach and ultimately succeeded in securing the funds during subsequent unlocking events."

“我们最初尝试手动捕获，低估了剥削者的经验。事实证明，他是一个强大的对手，”达尔维承认。 “我们迅速调整了方法，最终在随后的解锁活动中成功获得了资金。”

Meanwhile, the team used a "scavenging bot" to monitor the victim's wallet for incoming transactions, intercepting any funds sent by the exploiter before he could use them to unlock and extract the remaining assets. The scavenging bot proved particularly effective in capturing the daily yield generated by the locked funds, amounting to approximately $130 per day.

与此同时，该团队使用“清理机器人”来监控受害者钱包中的传入交易，拦截攻击者发送的任何资金，然后再使用它们来解锁和提取剩余资产。事实证明，该清理机器人在捕获锁定资金产生的每日收益方面特别有效，每天约为 130 美元。

"The exploiter consistently attempted to seize these funds, making the competition within the victim's wallet even more intense," noted Deps.

“剥削者不断试图夺取这些资金，使得受害者钱包内的竞争更加激烈，”德普斯指出。

Despite the persistent efforts of the exploiter, the developers' superior technical capabilities and unwavering determination proved decisive. They successfully applied maximum value extraction (MEV) tactics to outmaneuver the exploiter, paying exorbitant gas fees to expedite the recovery process.

尽管开发者坚持不懈地努力，但开发者卓越的技术能力和坚定不移的决心证明了这一点。他们成功地应用了最大价值提取（MEV）策略来智取剥削者，支付高昂的天然气费来加快恢复过程。

"We faced a formidable opponent, but we refused to give up," stated Senra. "The successful recovery of the victim's funds is a testament to the resilience and ingenuity of our team."

“我们面临着强大的对手，但我们拒绝放弃，”森拉说。 “成功追回受害者资金证明了我们团队的韧性和聪明才智。”

The stolen funds have been progressively returned to the victim, with the exception of approximately $20,000 still stored on Radiant. The team is actively coordinating with the Radiant team to facilitate the complete restoration of the victim's assets.

被盗资金已逐步返还给受害者，但 Radiant 上仍存储着约 20,000 美元。该团队正在积极与Radiant团队协调，以促进受害者资产的彻底恢复。

The successful recovery operation highlights the growing sophistication of blockchain security measures and the crucial role played by ethical hackers and developers in safeguarding the digital realm. It also underscores the importance of collaboration and the sharing of expertise to combat the evolving threats posed by cybercriminals.

此次成功的恢复行动凸显了区块链安全措施的日益复杂以及道德黑客和开发人员在保护数字领域中发挥的关键作用。它还强调了合作和分享专业知识以应对网络犯罪分子不断变化的威胁的重要性。