Currencies38131
Market Cap$ 2.27T+0.79%
24h Spot Volume$ 30.17B-8.87%
DominanceBTC56.30%0%ETH9.49%+1.12%
ETH Gas0.10 Gwei
Cryptorank
/

Infini Neobank Suffers $49.5M Hack Due to Insider Exploit


Infini Neobank Suffers $49.5M Hack Due to Insider Exploit

Share:

Predictions Markets

See what traders are focused on

View analytics →
Prediction Banner

  • Infini lost $49.5M in USDC after an attacker exploited retained admin privileges.
  • The stolen funds were converted to 17,696 ETH and transferred to a new wallet.

Crypto-focused neobank Infini has suffered a $49.5 million exploit, with the attacker swapping stolen funds for Ethereum before moving them to a separate wallet. The breach follows a string of major crypto security incidents, including Bybit’s $1.4 billion hack.

How the Attack Unfolded

CertiK first detected the suspicious activity on Feb. 24 at 3:18 am UTC. The attacker used a retained administrative privilege to gain unauthorized access to an Infini-related Ethereum contract. They withdrew 49.5 million USDC before exchanging it for DAI. The DAI was then used to buy 17,696 ETH. Lookonchain later identified that the Ethereum was moved to a new wallet.

According to blockchain security firm Cyvers, the attacker was a former developer who never relinquished full control over the contract. More than 100 days before the exploit, they funded their wallet through Tornado Cash, covering gas fees in preparation for the breach.

Infini co-founder Christian Li acknowledged the breach, taking responsibility for the mismanagement of administrative privileges. He assured customers that the platform remains financially stable and will fully compensate affected users.

“My personal private key was not leaked. This happened due to negligence when transferring authority. It’s my responsibility,” Christian stated.

Circle’s Response

Blockchain investigator ZachXBT criticized stablecoin issuer Circle for its delayed response. He noted that the stolen USDC was not fully converted for 40 minutes, questioning Circle’s incident response capabilities.

This is not the first time he has criticized Circle for its handling of malicious transactions involving USDC. He argued that U.S. companies often hide behind regulatory ambiguity rather than taking proactive security measures.

This breach follows Bybit’s $1.4 billion hack, which was linked to North Korea’s Lazarus Group. Bybit has since restored its reserves, securing over $1.2 billion in Ethereum to maintain platform stability.

Highlighted Crypto News Today
Global Crypto Funds Witness $508M Weekly Outflows, Says CoinShares

Read the article at TheNewsCrypto

In This News

Coins

$ 63.82K

+0.84%

$ 1.79K

+1.89%

$ 0.0073

+2.43%

$ 0.00177

$ 0.000207


Predictions Markets

See what traders are focused on

View analytics →
Prediction Banner

Share:

In This News

Coins

$ 63.82K

+0.84%

$ 1.79K

+1.89%

$ 0.0073

+2.43%

$ 0.00177

$ 0.000207


Predictions Markets

See what traders are focused on

View analytics →
Prediction Banner

Share:

Read More

Russia’s legal crypto on-ramp to arrive with a state-owned bank holding the keys

Russia’s legal crypto on-ramp to arrive with a state-owned bank holding the keys

The reported December launch matters because Russia’s new rules may make custody, lim...
Founders Debate Ethereum L2 Value After Robinhood Chain Launch 

Founders Debate Ethereum L2 Value After Robinhood Chain Launch 

The role of Ethereum in the Layer-2 ecosystem is back in focus after the launch of Ro...