KiloEx Bold Move: Hacker Returns $1.4M Amid Ongoing Investigation

KiloEx recovers $1.4M of $7.4M stolen in a cross-chain attack, while police investigate and ongoing negotiations hint at further restitution and platform recovery.

Yahya Raza
April 18, 2025
7:10 pm

Yahya Raza

Syed Yahya Raza Sherzai is a crypto news writer known for his in-depth analysis and timely reporting on blockchain technology, cryptocurrency markets, and decentralized finance (DeFi). With a keen eye for emerging trends and regulatory developments, Sherzai has established himself as a trusted voice in the cryptocurrency space.

KiloEx recovers $1.4M of the $7.4M stolen during a cross-chain attack across multiple blockchains on April 15.
The hacker exploited a price feed vulnerability, stealing funds from Base, opBNB, and BNB Chain in the attack.
Police investigation in progress, with cybersecurity firm SlowMist helping KiloEx track the hacker’s actions.

The hacker who successfully stole $7.4 million from KiloEx has decided to pay back some of the funds. On April 18, PeckShield reported that $1.4 million worth of USDT was transferred back to the platform address. KiloEx, a perpetual trading platform built by YZi Labs, was attacked across chains on April 15. It affected several chains, namely Base, opBNB, and BNB Chain.

The exploit was with the price feed feature of the platform, and the hacker was able to change the ETH/USD rate and steal the money. The total amount of money lost was as follows: Base lost $3.3 million, opBNB lost $3.1 million, and BSC lost $ 1 million.

#PeckShieldAlert #KiloEx exploiter -labeled addresses has returned ~1.4M #USDT to #KiloEx https://t.co/SijPGua1ur pic.twitter.com/rPKAJtdWm2
— PeckShieldAlert (@PeckShieldAlert) April 18, 2025

KiloEx Offers White-Hat Reward

The theft was initially noticed by Cyvers Alerts, which tracked the stolen money to a wallet funded through Tornado Cash. However, the hack was quickly noticed by KiloEx, and they demanded that the hacker return the coin within 72 hours, offering a 10% white-hat reward as motivation. The platform also informed the attacker that its addresses are being tracked to prevent any mishap, and the funds will be frozen.

When the hacker did not reply, KiloEx decided to escalate the matter by reporting the issue to the Hong Kong police on April 17. The company also utilized the services of cybersecurity firm SlowMist during the investigation.

KiloEx has published some information to the police, having received users’ feedback regarding the hack. The company is also preparing a detailed statement on the event’s unfolding as the investigation continues.

Dear KiloEx Users,
We would like to update you on the latest developments regarding the April 15th hacker incident.

1. We have reported the incident to the Hong Kong police, and a formal case has been filed. KiloEx is working with both the Criminal Division and the Cybercrime…
— KiloEx (@KiloEx_perp) April 17, 2025

Negotiations Show Progress

The $1.4 million has been recovered, although it represents only a small proportion of the embezzled amount. However, it shows some signs of how the ongoing negotiations are being conducted. KiloEx has not provided further information, including whether additional discussions are underway or if further funding will be repaid.

Meanwhile, KiloEx is forging ways to revive its trading business. The platform has reassured people that the open positions will be closed at the price level before the attack. Thus eliminating cases for forced liquidations. KiloEx is yet to launch a specific variety for the user compensation plan, though extra details are still pending to release.