Loopscale Recovers Stolen $5.8M: Hacker Agrees to Whitehat Deal

Loopscale recovers $5.8M after exploit, resolving the issue with a whitehat deal, securing user deposits, and ensuring transparency.

Yahya Raza
April 30, 2025
8:00 pm

Yahya Raza

Syed Yahya Raza Sherzai is a crypto news writer known for his in-depth analysis and timely reporting on blockchain technology, cryptocurrency markets, and decentralized finance (DeFi). With a keen eye for emerging trends and regulatory developments, Sherzai has established himself as a trusted voice in the cryptocurrency space.

Loopscale regains $5.8M after exploit, securing all user deposits within two days.
Hacker returns stolen funds after agreeing to a whitehat deal, avoiding legal action.
A platform-wide audit is in progress to detect and address similar vulnerabilities.

Loopscale has announced that it has regained $5.8 million it lost during an exploit that occurred on April 26. The decentralised finance platform affirmed that all users’ deposits have been secured. The attacker was participating in a whitehat deal, thus giving back the stolen money. Loopscale immediately responded by shutting down the markets, reaching out to the hacker, and resolving the issue in under two days.

The attack was specific to Loopscale, and it was developed for the RateX PT token pricing mechanism. This enabled the attacker to steal approximately 5.7 million USDC and 1,200 SOL. USDC and Solana vaults only were impacted by this event specifically. Only borrowers and loopers did not experience the impact of the breach.

Following successful negotiations, all funds taken from the Loopscale protocol (5,726,725 USDC + 1,211 SOL) on April 26th have now been returned.

Users will incur no loss of deposits from this incident. Additional details (including information on vault withdrawals) to follow. https://t.co/zAgzAcGMSU
— Loopscale (@LoopscaleLabs) April 29, 2025

Loopscale Achieves Full Recovery

After the attack had been identified, Loopscale contacted the hacker through an on-chain message. This dispute was resolved through negotiations, and it was decided that there would be no lawsuits. 90% of the money that was stolen was also given back in the proposal. In return, the hacker would be rewarded with a 10% bounty, equivalent to approximately 3,947 SOL, while being immune to any legal actions.

The hacker responded within the next twenty-four hours with positive feedback. The last 19,999 of SOL tokens were sent back at 3:30 AM EST on April 28. This essentially indicated the full recovery of all the stolen money. Loopscale then resumed loan repayments and loop closure. Nevertheless, withdrawals from vaults are still frozen as further examination continues.

But more details to come, I and the whole team are really grateful for the support and help we received from the ecosystem during the last 72 hours, the Loopscale co-founder, Mary Gooneratne, said. It would not be possible to pass this resolution without the cooperation of so many other people.

At 3:30AM this morning, the remaining 19,999 SOL was returned to a Loopscale wallet, resulting in an outcome with no user deposit losses from the incident.

We’re deeply grateful for the patience and trust our users have shown throughout this process.

More details to come, but… https://t.co/aiYT64Ks5f
— Mary Gooneratne (@marygooneratne) April 29, 2025

Swift Response Ensures Success

This recovery was received positively across the entire crypto community, especially since Loopscale was appreciated for its clear and uncomplicated communication. In this way, the team managed not only to defend its users and its reputation by not dragging the conflict into protracted legal proceedings.

Security experts pointed out the possibility of Loopscale’s success because of its quick response. Freezing the markets and actively interacting with the hacker allowed for a total incident resolution of this kind. Thus, the team protected itself from further harm as it worked on rebuilding the users’ trust.

Loopscale is also currently performing audits on other areas of the platform as well. The aim is to detect the kind of similar vulnerabilities as well. Future updates containing information on these changes will be disclosed in the future.

This outcome is quite remarkable in the often risky world of DeFi. Rather than experience a loss, Loopscale was able to transform it into a win. Thus, the recovery proves that acting fast and responding to a threat with the truth is beneficial for users and protocol security.