Thala Labs: Recovery of Stolen $25.5 Million After Attack

by Giorgi Kostiuk

a year ago

On Nov. 15, 2024, Thala Labs, a DeFi protocol on the Aptos blockchain, faced a significant hack. The attack allowed the hacker to withdraw $25.5 million in liquidity pool tokens.

The Attack and Immediate Actions

In response to the attack, Thala's team paused all relevant contracts and froze approximately $11.5 million in related assets, including $9 million in Move Dollars (MOD) and $2.5 million in THL tokens. Thala Labs stated that affected users do not need to take any action, as all positions will be restored to their full value.

We are relieved to announce that affected users require no further action, and their positions will be made 100% whole.Thala Labs

Recovery Process and Negotiation

With the help of Seal 911 and Ogle, two crypto-focused theft recovery organizations, Thala was able to quickly identify the hacker. The hacker willingly contacted them to negotiate the return of the stolen funds, and was offered a $300,000 bounty in exchange. The stolen funds were returned just hours after the exploit.

What is Thala Labs?

Thala Labs offers automated market-making and a yield-bearing stablecoin, Move Dollar (MOD), within the Aptos ecosystem. The protocol recently launched ThalaSwap V2, but the breach was attributed to a vulnerability within the older v1 contracts.

The Thala Labs hack showcases ongoing security challenges in the crypto industry. Despite a decrease in losses compared to earlier in the year, such incidents remain a significant risk for decentralized protocols.

Rewards

More rewards

Discover enhanced rewards on our social media.

Other news

Kevin O'Leary Secures $28 Million Judgment in Defamation Case Against Ben Armstrong

Businessman Kevin O'Leary has won a $28 million judgment in a defamation case against YouTuber Ben Armstrong after Armstrong failed to respond to the lawsuit regarding false claims about O'Leary's involvement in a fatal boating accident.