Which exchanges are used by the Ronin Network (RON) hacker? And does he have a lot to sell?
CertiK, a flagship cybersecurity company, has released a diagram depicting the strategy of the most successful hacker in DeFi history. It looks like he/she will keep trying to wash the loot.
Certik tracked assets stolen by Ronin hacker: see the results
According to the statement from the @CertiKAlert account used by CertiK for instant notifications, the Ronin Network (RON) hacker’s loot is divided into three clusters.
Day 11, here’s the summary so far. Transactions from the wallet used to exploit @Ronin_Network
$20.72 million sent to exchanges
$89.94 million sent to Tornado Cash
$459,891,672.02 Still in the Ronin Bridge exploit wallet
A total of 36,165 ETH
Stay vigilant! pic.twitter.com/q72p6GN1Bz
— CertiK warning (@CertiKAlert) Apr 14, 2022
The first group, which has a total of $20.7 million in equivalent, has already been sent to several centralized exchanges. Hackers are trying to sell their loot on FTX and Huobi, two heavyweight CEXs.
Subsequently, nearly $90 million in equivalent was transferred to Tornado Cash, the most popular mixing service used to cover up the history of crypto tokens.
The vast majority of crypto acquired by a hacker is still stored in his account: $459 million in equivalent is dormant as of today, April 14, 2022.
New assets are transferred to Tornado Cash every day
As previously described by e-RUPI Guide, Axie Infinity’s Ronin Network (RON) side chain hack is the largest hacker attack in the history of the DeFi segment.
The net sum of the losses eclipsed $625 million. To prevent this from happening again, Sky Mavis, the company behind Axie Infinity (AXS) and its side-chain Ronin Network (RON), launched an unprecedented $1 million bug bounty campaign.
The attackers send Ethers to Tornado every day; they are divided into 1,000-3,000 ether parts.