The recovered amount is now more than double the $9 million that ethical hackers sent back to Nomad on Wednesday. More recovered funds followed Nomad's offer of a 10% bounty on Thursday.
On 1 August, more than 300 addresses collectively took $190 million from Nomad's cross-chain bridge, a tool that lets users move ERC-20 tokens among Ethereum, Moonbeam, Evmos and Avalanche.
The bridge had a critical vulnerability that became public and made it possible to drain funds. The vulnerability was introduced by Nomad developers during a smart-contract update.
The team announced on Thursday that it would pay the 10% reward to anyone who returned the tokens to a specific return address, and offered assurances that no legal action would be taken against those who did so.
Nomad said it is collaborating with law enforcement agencies to investigate the incident. It has also partnered with on-chain analytics firm TRM Labs to track the flow of funds across addresses involved in the exploit.
© 2023 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.