The decentralized exchange Cetus, built on the Sui blockchain, has been hit with one of the largest DeFi exploits of the year, losing over $220 million in crypto assets.
While the team swiftly froze $162 million, they’re now offering the hacker a $6 million white hat bounty if the remaining funds, including 20,920 ETH, are returned.
“Keep 2,324 ETH and walk away—we won’t take legal or public action,” Cetus offered in an on-chain message. If ignored, the team says it will pursue every legal and intelligence channel available.
The incident comes amid a rise in crypto-related breaches—April alone saw $90 million in stolen funds across 15 attacks, and Bybit’s massive $1.4 billion loss in February still casts a shadow.
Behind the scenes, developers on the Sui network considered deploying an emergency “whitelist” function to bypass standard validation and potentially recover assets. Critics argue this undermines the chain’s decentralization, while defenders view it as a necessary safeguard.
Developer logs and GitHub activity confirm that a proposal was discussed to allow certain transactions without signatures. Some validators resisted, and current actions are limited to blocking hacker-related transfers, not rewriting transactions.
The debate has split the crypto community. To some, it’s a red flag for centralization. To others, it shows that blockchain governance can be proactive without abandoning core values.
“Decentralization isn’t about standing by—it’s about acting as a community,” one user wrote.
As the bounty window remains open, the Cetus case may be remembered not only for the scale of the theft—but for testing the boundaries of decentralized decision-making.
A legal clash between Coin Center and the U.S. Treasury Department over sanctions imposed on Tornado Cash has officially come to an end, following a joint decision to dismiss the case.
A sophisticated cyberattack targeting Brazil’s central bank reserve accounts has resulted in the theft of over $140 million (R$800 million), much of which was swiftly funneled through cryptocurrency channels.
A malicious open-source project on GitHub disguised as a Solana trading bot has compromised user wallets, according to a July 2, 2025, report by cybersecurity firm SlowMist.
The U.S. Department of Justice has sentenced Dwayne Golden, 57, of Pennsylvania to 97 months in prison for orchestrating a fraudulent crypto investment scheme that stole over $40 million from investors.