Particle.news

Download on the App Store

CrediX Hacker Agrees to Return $4.5 Million in Fund-Recovery Deal

The Solana-based protocol remains offline pending a probe into a governance flaw that let the attacker mint fake tokens before bridging assets to Ethereum.

Defi protocol credix taken offline after $4.5m exploit
Photo: Growtika
CrediX Finance hacked for $4.5m via governance flaw
Image

Overview

  • The attacker has agreed to return all $4.5 million in exchange for an undisclosed payment from CrediX’s treasury, with funds expected within 24 to 48 hours.
  • Security firm SlowMist flagged that the attacker was added as an Admin and Bridge controller via the ACLManager six days before the exploit, compromising governance controls.
  • The governance flaw enabled the attacker to mint unbacked collateral tokens, borrow against the lending pool and drain CrediX’s liquidity.
  • Stolen assets were bridged from the Sonic network to Ethereum and now rest in three separate wallets awaiting recovery.
  • The breach contributes to $3.1 billion in DeFi losses tied to multisig failures in 2025 and underscores calls for AI-driven real-time monitoring and stricter access controls.