Earlier this week, the founding father of DeFi insurer Nexus Mutual was hacked to the tune of $8 million in NXM
The unknown hacker received entry to Hugh Karp’s system utilizing a malware assault and altered its MetaMask file extension. The firm misplaced 370,000 native NXM tokens that had been transferred to the hacker’s deal with. At the time of the incident, the stolen tokens had been price near $8 million.
The hacker transformed the stolen funds into wrapped NXM (WNXM) and moved them to an deal with ending in 2e2b.
“The attacker gained remote access to his computer & modified the MetaMask extension, tricking him into signing a different transaction which transferred funds to the attacker’s own address. The attacker completed KYC 11 days ago and then switched membership to a new address on Friday, 3 December”, the company wrote.
A weird flip of occasions
What has since unfolded can solely be described as outré. The hacker wrote to Karp and the Nexus Mutual workforce asking for 4,500 Ethereum tokens (ETH). The attacker additional threatened to dump the WNXM tokens out there in a method that would dent the challenge’s present market place if the calls for weren’t met. The requested Ethereum is the equal of practically $3 million.
The attacker’s embedded message learn, “Hello Hugh. I will not sell WNXM any more until WNXM recovers his value or you send me 4.5k ETH. If you need any negotiation with me, send msg to my eth address. Following are your addresses. You are rich, Hugh.0x87B2a7559d85f4…”
What this implies for the DeFi insurer
Based on the present state of affairs, issues don’t look good for the DeFi insurer. This is as a result of Uniswap is the one decentralised change that the hacker can use to keep away from getting frozen out. Here is the place the issue arises.
Uniswap solely has meagre liquidity for WNXM in comparison with different centralised exchanges, and dumping the tokens there might make the coin nosedive. The attacker barely left room for negotiations, with the one allowance being “send msg to my eth address”.
The Nexus Mutual workforce is collaborating with legislation enforcement businesses to trace the hacker, and evidently they’re closing in on the attacker. The workforce shared a reassuring tweet yesterday after Karp alluded to have gained entry to the attacker’s IP and different particulars which could assist to nail the hacker.