Altcoins Talks - Cryptocurrency Forum
Learning & News => News related to Crypto => Topic started by: Bobcrypto on April 28, 2025, 09:14:59 PM
-
Few weeks ago the Lazarus group successful hacked the Bybit exchange some good quantities of Ether token worth around $1.2 billion.
Another group of hackers, called the, "Loopscale" also successfully hacked a Solana Defi protocol platform some amount of Sol token worth around $5.7m.
Now, this Loopscale hackers became lenient, and they decided to return the stolen funds for a bounty.
Just want to be curious, does this Loopscale hackers trying to be lenient or they just want to proof that they are experts in hacking? your thoughts
Read here: https://cointelegraph.com/news/loopscale-hacker-agrees-return-stolen-crypto-bounty
I am just wondering because we hardly hear of hackers returning their stolen funds this days.
-
Now, this Loopscale hackers became lenient, and they decided to return the stolen funds for a bounty. Just want to be curious, does this Loopscale hackers trying to be lenient or they just want to proof that they are experts in hacking?
Yes, in a way this is the manner they are sending the message that they got the capability that all should be afraid of. Now, if I am from the platform hacked by Loopscale, I would hire these guys to find any kind of weakness in my system so that other evil hackers could not get in anymore. Between Lazarus and Loopscale, we now know which is evil and which is lenient. Seldom do we encounter a group of hackers with this intention to just expose a loophole, return when they took and then just demand a bounty fee, sort of a prize for exposing something that other hackers may also exploit. We should always remember and praise the name: Loopscale and curse Lazarus for creating havoc in Bybit.
-
Best way to have legit money is to legally earn it by means of "security bounty". This way they get paid and advertised. They no longer need to be worried about law enforcements going after them for theft.
Whatever platform that gets hacked is due to poor security designs, not necessarily a show of skills for hackers when they find a weak point.
I wonder, is the source code of said exchange now publicly available so that we could check and determine if there was a "hole" or the hackers were just that much good?
Doubt it if they reveal the source code, but if they do and there is no weak point, it'd prove someone from inside was in on it.
And if there was a hole in the code, well they will just loose their credibility in the future ( not that they have any right now).
-
---
Now, this Loopscale hackers became lenient, and they decided to return the stolen funds for a bounty.
Just want to be curious, does this Loopscale hackers trying to be lenient or they just want to proof that they are experts in hacking? your thoughts
Read here: https://cointelegraph.com/news/loopscale-hacker-agrees-return-stolen-crypto-bounty
I am just wondering because we hardly hear of hackers returning their stolen funds this days.
I also saw this news, and I'm also participating in their current airdrop as well. Fortunately, my money is still there.
Maybe they're some type of "white hat hackers" who are just hacking platforms to show how weak and vulnerable their current system is. Like you, I rarely hear hackers returning the money that they hacked in exchange for some bounty, but it's a different one this time, and TBH, I consider them lucky because the ones that hacked their platform is somebody that isn't greedy at all.
Maybe they're trying to prove to these platform owners that they can do it and will ask them to hire them to strengthen their security, or they're just doing it for fun.
-
They are also probably afraid of the blockchain footprint where some exchanges and other wallets will blacklist the wallet that holds the stolen money... anything related to the transaction from the stolen wallet will be flagged by the exchange and start to be suspicious if there is any unusual activity... it is not easy even though there are mixer services nowadays,
Another possibility is that they want to get attention by trying to hack and succeed in hacking a system that is worth a lot of money... $5.7 million is a fantastic amount for a hacker who has not even heard of his name... they proved that they can break certain security, so I think that is real evidence that they can actually do something big that has an impact on other platforms...
-
---
Now, this Loopscale hackers became lenient, and they decided to return the stolen funds for a bounty.
Just want to be curious, does this Loopscale hackers trying to be lenient or they just want to proof that they are experts in hacking? your thoughts
Read here: https://cointelegraph.com/news/loopscale-hacker-agrees-return-stolen-crypto-bounty
I am just wondering because we hardly hear of hackers returning their stolen funds this days.
I also saw this news, and I'm also participating in their current airdrop as well. Fortunately, my money is still there.
Maybe they're some type of "white hat hackers" who are just hacking platforms to show how weak and vulnerable their current system is. Like you, I rarely hear hackers returning the money that they hacked in exchange for some bounty, but it's a different one this time, and TBH, I consider them lucky because the ones that hacked their platform is somebody that isn't greedy at all.
Maybe they're trying to prove to these platform owners that they can do it and will ask them to hire them to strengthen their security, or they're just doing it for fun.
Most of the reason given on this Loopscale hack could be considered a genuine course, though they are still criminals on whatever reasons, but i don't think hackers could hack this huge amount for fun. Hacking is a criminal activity and can't be for fun because it could land them in jail if they are. caught.
-
Now, this Loopscale hackers became lenient, and they decided to return the stolen funds for a bounty.
i am confused does this mean they will have immunity? are they also asking that they do not receive any punishments for what they did? what happens if the platform decides to give them punishments even if they bring back the stolen funds? after all, they gave it back or not, they still committed a crime
Just want to be curious, does this Loopscale hackers trying to be lenient or they just want to proof that they are experts in hacking? your thoughts
i have no idea what they are thinking to be honest do they believe that they will earn more by asking for bounty than just running away with what they have stolen anyway what the hackers did show is that the system of the platform is weak and susceptible to hacks which weakens their image
-
I am just wondering because we hardly hear of hackers returning their stolen funds this days.
Yeah, it's definitely unusual move. But i would speculate it's partly because difficulty of spending or laundering coin they stole effectively.
-
Well, it's a 'legitimate' way to earn some money ;D Although it's more likely that they do not have the network to wash/clean those stolen crypto unlike the Lazarus group, the skeptic in me also says it could be one of their sneaky ways to steal money from investors.
-
It depends on the level of risk. Those who return the money usually don't want to be involved in legal proceedings while keeping 10% and the possibility of being hired in a well-paying job.
On the other hand, it is difficult to confirm that the Lazarus group is a real group of developers (if it even exists).
-
Most of the reason given on this Loopscale hack could be considered a genuine course, though they are still criminals on whatever reasons, but i don't think hackers could hack this huge amount for fun. Hacking is a criminal activity and can't be for fun because it could land them in jail if they are. caught.
We have the right to pursue multiple conspiracy theories in this case.
1. Hackers only wanted to prove their capabilities by finding and exploiting a vulnerability in Loopscale protocol. Afterward, returning the misappropriated funds was done for self-preservation.
2. Handling the misappropriated funds from DeFi users is not easy at all. Hackers would face the risk of being tracked down and identified. Returning the funds to receive a smaller reward/bounty is a safer action.
3. Loopscale might just be staging a play to make its mark in the crypto market.
Ultimately, whatever the reason, DeFi users will suffer financial losses, lost opportunities, and wasted time. They should look for safer DeFi platforms to avoid such troubles and worries.
-
I am just wondering because we hardly hear of hackers returning their stolen funds this days.
They are asking for 10-20% bug bounty rewards to make stealing legal, and the company will not go after them and charge them.
The hackers know that if their escape route has a flaw, there is a possibility of getting traced, so they offer a deal that will let them have part of the loop.
After the deal, it's likely that they are going to repeat this hacking and offer a bug bounty deal to a platform that they are going to hack. They are making stealing legal and finding an easy way to escape.
-
Gray hats probably. Some hackers are just trying penetration test and they could be gaining reputation because this seem to be a job already that they could get into a platform expose vulnerabilities and developers are to be informed about it which their job has to improve securities which in this case the Solana Defi platform.
This bounty is their pay for this penetration test. Who knows they may be hired by some platforms also to test the vulnerabilities.
-
There is no proof of who is behind these hacks, every recent hack has been said to be committed by the Lazarus Group from North Korea, but there isn't enough information to prove that, i am surprised this hack was not 'linked' to them.
However, this hacker knows how difficult it is to launder money, so doing it this way will earn them some money that they can spend freely.
-
2. Handling the misappropriated funds from DeFi users is not easy at all. Hackers would face the risk of being tracked down and identified. Returning the funds to receive a smaller reward/bounty is a safer action.
Not only that, but there's a high probability of freezing. Unlike Bitcoin, Ethereum, Monero, and Dash, it's difficult to break the link between your inputs and outputs, thus concealing your identity. In this case, 10% legal payment is a good deal.
-
Maybe they are just now exposing the possible bugs and want bounties. I’m not sure if they could be classified as white hackers; maybe they are still on the grey side.
It could be a show of skill as well, so better watch out for those who are operating businesses that have large amounts of money
-
I am just wondering because we hardly hear of hackers returning their stolen funds this days.
Yeah, it's definitely unusual move. But i would speculate it's partly because difficulty of spending or laundering coin they stole effectively.
but they can also just remind that there is nothing unsafe on every platform or various blockchains, all can be taken over by people who are indeed capable in this matter, the problem of money laundering from hacking can also be the reason they return funds where as we know they hacked will not be able to be sold or diverted in short time , what's more on local exchanges they will be detected by the exchange, it's the same as them surrendering themselves