647 Days Later, Wallet Tied to Uranium Finance Hacker Moves $3.35M
The hacker of the DeFi project – Uranium Finance – started moving 2,250 ETH, worth approximately $3.35 million, in stolen funds into the popular coin mixer, TornadoCash.
The movement of funds from the wallet was detected by the blockchain security firm, PeckShield, on March 7th.
Data from Etherscan reveals that the hacker transferred the funds over a time frame of seven hours in transactions ranging from 1 ETH to 100 ETH.
In addition to this, another Ethereum wallet tied to the hacker shows it was last active 159 days ago. Gauging further, it was found that 5 ETH was sent to privacy-focused Ethereum zk-rollup on Aztec.
Uranium Finance was exploited on April 28, 2021. The attackers targeted its v2.1 token migration event and exploited the project’s balance modifier.
The Binance Smart Chain-based protocol was drained of $50 million in funds.
Rug pull allegations surfaced despite the team maintaining their innocence.
Shortly after the exploit, Uranium Finance shelved plans for v3 and announced a total shutdown. Its last post stated,
“We will of course continue to help Binance and our users as much as we can via Telegram and if funds are secured will provide every assistance in the redistribution, but that is where Uranium ends. We will not be trying to make this project reborn again, doing so is not possible under these circumstances.”