Tender.fi hacker returns stolen funds, gets bounty reward

Quick Take

  • A hacker responsible for a $1.59 million exploit on Tender.fi, an Arbitrum-based lending platform, has returned the funds.
  • Tender.fi team agreed to pay 62 ETH ($96,500) as a bounty reward to the hacker. 

In a surprising turn of events, a hacker responsible for a $1.59 million exploit on Tender.fi, an Arbitrum-based lending platform, has now returned funds, on-chain data show.

Earlier today, the hacker took advantage of a misconfigured data oracle that allowed them to borrow $1.59 million in crypto assets with just a single GMX token worth $70 as collateral, a costly error for the protocol. 

Security firms PeckShield and BlockSec were quick to investigate the matter and discovered that the unusual loan could happen by a misconfigured oracle used by Tender.fi, an Arbitrum-based lending platform.

THE SCOOP

Keep up with the latest news, trends, charts and views on crypto and DeFi with a new biweekly newsletter from The Block's Frank Chaparro

By signing-up you agree to our Terms of Service and Privacy Policy
By signing-up you agree to our Terms of Service and Privacy Policy