Over 8.6K Solana wallets linked to $21M DEXX hacker

Over 8.6K Solana wallets linked to $21M DEXX hacker

Crypto security firm SlowMist released a document identifying more than 8,620 Solana addresses suspected of being linked to the DEXX hacker.

On Nov. 16, memecoin trading terminal DEXX fell victim to a security exploit, resulting in losses impacting at least 900 unique users. 

According to MistTrack, most victims lost less than $10,000 amid a private key leak, though one individual lost more than $1 million. 

Security firm SlowMist identifies 8,000 addresses tied to DEXX hack

Over 8,600 suspicious wallets were identified on Solana. Source: MistTrack

The total loss from the incident was initially reported at $21 million, the second-largest hack in November behind the $25.5 million Thala hack, though Thala recovered all lost assets.

As of Nov. 29, DEXX’s total loss has risen, SlowMist founder Cos told Cointelegraph.

“The total loss is estimated to be within $30 million. The price fluctuation of meme tokens has a significant impact on the overall loss,” Cos said.

Related: Crypto hackers steal $71M in November, bringing yearly total to $1.48B

The hacker was seen converting the assets into Solana (SOL).

Cos said that SlowMist intends to publish additional suspicious wallet addresses on Ethereum, BNB Chain and Base “next week.”

DEXX attempts to negotiate with hacker in recovery efforts

Following the attack, DEXX issued a statement on social media, confirming it was monitoring the hacker’s wallets and working to freeze the funds. 

DEXX offers hacker bounty and tokens in return for stolen funds. (DEXX)

The platform also offered a bug bounty and token reward if the stolen assets were returned within 24 hours. A similar plea was made on Nov. 23.

“So far, we have tried to leave messages on the chain and leave an email. But the hacker didn’t reply. At the same time, we are actively negotiating with the capital, counting the amount, and upgrading security issues to restart DEXX. I hope that our series of actions can compensate our users as much as possible,” the operations director at DEXX, “Bruce,” told Cointelegraph.

DEXX has partnered with SlowMist and law enforcement to investigate the attack and has committed to compensating affected users. Still, the compensation plan will depend on the extent of recovered funds.

Related: Crypto drainers are retiring as investigators start to close in

A drop in total yearly hacks

Hackers have stolen $71 million in the month of November, according to a recent report by security firm Immunefi, bringing the annual total close to $1.5 billion with a month left in 2024.

So far, that’s a 15% drop from 2023, despite major incidents like the $305 million lost in Japan’s DMM Bitcoin exchange and $235 from India’s WazirX.

Illicit actors use various means to steal crypto other than hacks, including pig-butchering scams allegedly running from Southeast Asian hubs, and phishing scams where malicious draining softwares gain access to victims’ wallets.

According to ScamSniffer, $20.2 million among 12,000 victims was lost to phishing scams in October.

Magazine: Fake Rabby Wallet scam linked to Dubai crypto CEO and many more victims