U.S. authorities recovered $31 million in cryptocurrency stolen in 2021 cyberattacks on Uranium Finance, a Binance Sensible Chain-based DeFi protocol.
Uranium Finance was a decentralized finance (DeFi) protocol constructed on Binance’s BNB Chain that operated as an automatic market maker (AMM) much like Uniswap.
The platform launched in April 2021, however hackers rapidly exploited vulnerabilities in its good contracts to empty its property and push it to untimely dying, inflicting thousands and thousands in investor losses.
Blockchain intelligence agency TRM Labs reported at present that it has aided the Southern District of New York (SDNY) and Homeland Safety Investigations (HSI) San Diego in monitoring and recovering the stolen property, leading to some of the important retrievals in recent times.
“In February 2023, TRM labored carefully with regulation enforcement to meticulously hint the motion of stolen property throughout a number of blockchains, figuring out key laundering patterns and producing actionable intelligence for regulation enforcement,” reads the TRM Labs report.
“By March 2023, the staff had mapped out the attackers’ makes an attempt to obfuscate their funds, linking them to Twister Money transactions and cross-chain swaps.”
“Consequently, regulation enforcement was capable of efficiently seize USD 31 million in excellent funds in February 2025.”
Supply: TRM Labs
The funds have been stolen in two assaults, each in April 2021, leading to losses of over $53,700,000.
The primary assault, from April 6, 2021, exploited a vulnerability within the reward distribution system, resulting in a $1.4 million theft.
The hacker later returned $1 million, retaining $385,500, which was laundered through Twister Money.
The second assault occurred on April 28, 2021, and leveraged a single-character coding error in Uranium Finance’s buying and selling logic, permitting attackers to steal $52 million by manipulating balances.
The stolen funds have been laundered via decentralized exchanges, transformed into varied cryptocurrencies, and saved in dormant wallets for years.
With over half of this quantity now recovered, the U.S. SDNY requested victims of the hack to e mail UraniumVictims@hsi.dhs.gov to assert a portion of the recovered cryptocurrency.
