CrediX Recovers $4.5M After Negotiating with Hacker
CrediX, a protocol dealing with money market infrastructure, managed to pull off something rare in crypto these days—getting stolen funds back. Earlier this week, the platform was hit by an exploit that drained $4.5 million, with the attacker quickly moving the funds through Tornado Cash. But in a twist, CrediX says it struck a deal with the hacker, who agreed to return the money.
The details are still a bit fuzzy, but according to a post on X (formerly Twitter), the attacker will send back the full amount within 24 to 48 hours. In exchange, CrediX’s treasury is paying them an undisclosed sum. It’s not exactly a happy ending, but for users who thought their money was gone, it’s better than nothing. The recovered funds will be airdropped back to affected wallets soon.
Blockchain security firm Cyvers first flagged the breach, though it’s unclear how the hacker got in. CrediX hasn’t shared much else about the negotiations—whether this was a white hat bounty situation or just a straightforward payoff. Either way, it’s a small win in a year full of crypto heists.
A Growing Trend—Hackers Returning Stolen Crypto
This isn’t the first time an exploiter has given back what they took. Just last month, someone returned $40 million stolen from GMX after the team offered a $5 million bounty. Back in May, another thief coughed up $71 million from a wallet poisoning scam, possibly spooked by blockchain investigators closing in.
It’s hard to say why hackers sometimes give in. Maybe it’s pressure, maybe it’s guilt, or maybe they just want a cut without the legal heat. In CrediX’s case, the attacker might’ve realized cashing out $4.5 million wasn’t worth the trouble.
Crypto Hacks Are Still Out of Control
Even with these occasional returns, 2025 has been brutal for crypto security. Over $2.47 billion has been stolen so far this year, according to CertiK. The second quarter alone saw $800 million lost across 144 incidents—slightly lower than Q1, but still alarming.
What’s worse? Most hacked tokens never recover their value. A report from Immunefi found that nearly 80% of projects see permanent damage after an exploit, often worse than the theft itself.
And it’s not just DeFi getting hit. Traditional finance is in the crosshairs too. Earlier this month, a Brazilian banking software provider was hacked for $140 million after an employee allegedly sold login credentials for around $2,700.
CrediX’s recovery is a rare bright spot, but it doesn’t change the bigger picture—security in crypto (and beyond) is still a mess. For now, getting money back is the exception, not the rule.
