Investors rug-pulled after pouring $57M into dog-themed OlympusDAO fork

Published at: Nov. 1, 2021

After launching via a Discord channel on Oct. 28, AnubisDAO went on to raise roughly 13,256.4 ETH using Alchemistcoin’s liquidity bootstrapping protocol (LBP) Copper. However, the funds were unexpectedly sent to a different address roughly 20 hours into the LBP.

CNBC spoke to one investor who claims to have lost almost $470,000 to AnubisDAO. The investor, Brian Nguyen, conceded to subscribing to a “buy first, do research later mentality,” describing the loss as “pretty painful.”

Nguyen noted that he was attracted to AnubisDAO because of its canine-themed branding amid the meteoric gains recently reaped by some dog-token investors after seeing Anubis promoted on Twitter by prominent pseudonymous DeFi advocate “0xSisyphus.”

Anubis is the Greek name for the Egyptian god of death and the underworld, with Egyptian imagery depicting the god as donning the body of a human and the head of a dog.

Investors appear to have lost roughly $57 million worth of Ether in what many are describing as a rug-pull executed by the upstart canine-themed OympusDAO fork, AnubisDAO.

0xSisyphus has published a detailed timeline outlining AnubisDAO’s formation and launch, and claims to have engaged law enforcement in both the United States and Hong Kong. 0xSisyphus has also offered to cease the civil proceedings should the perpetrator return the stolen finds minus a 1,000 ETH bounty.

In lieu of a case number which can be released to the public (hopefully this is available tomorrow), please see below for confirmation I am actually in touch with authorities https://t.co/jCgOwaq129

— Sisyphus (@0xSisyphus) October 31, 2021

Inside job?

According to 0xSisyphus, the idea for an OlympusDAO fork inspired by Shiba Inu’s branding arose from discussions among members of the PebbleDAO project during Oct. 26 and Oct. 27.

A Telegram for the project was created on the 27th, with its six original members all hailing from PebbleDAO. The following day it is decided that the pseudonymous founding member “Beerus” would be tasked with deploying the LBP — a decision that 0xSisyphus now describes as a “critical mistake”:

“This was the critical mistake. This should have been done from the original multisig wallet.”

With just hours left until LBP was scheduled to close on Oct. 29, Beerus claimed “to have opened a malicious link from a PDF” and exposed the private keys used for the LBP launch. 13,556 Ether was then pulled from the LBP shortly after, however Beerus’ personal wallet funds appear to remain “intact and under his control.”

0xSisyphus also notes that “security researchers provided the PDFs from phishing emails” distributed during the day Beerus claimed to have clicked the malicious link, noting at “at this point, none have found any malicious content contained in the PDFs.”

Beerus’ real-world information is also collated and partially published to Twitter and Hong Kong authorities are contacted on Oct. 29. Beerus filed a report and turned one computer over to Hong Kong police the following day.

0xSisyphus also notes that wallets associated with the incident have since sent ETH to Coinbase, adding that the exchange has been notified of the transactions.

Tags
Defi
Cybercrime
Crimes
Related Posts
Why the BitMEX charges could be bad news for DeFi
In the aftermath of criminal charges against BitMEX, the crypto community is debating whether the decentralized finance sector is also set to face the wrath of regulators. On Oct 1, the U.S. Commodity Futures Trading Commission announced charges against three BitMEX executives for violating the Bank Secrecy Act (BSA) due to the exchange’s allegedly weak anti-money laundering and know-your-customer (KYC) policies. DeFi protocols, including Decentralized Exchanges (DEXs) have made a virtue of having minimal AML and KYC procedurs. However many now wonder if DEXs are also obliged to comply with the BSA, even though most projects seek to decentralize ownership …
Blockchain / Oct. 2, 2020
Blockchain and crypto can be a boon for tracking financial crimes
Governments around the globe have also become more aware of the crypto market and the various ways in which it can be regulated. Despite a growing adoption rate and involvement of mainstream financial giants, however, naysayers continue to portray crypto as a tool for miscreants and criminals. Several crypto platforms and decentralized finance (DeFi) protocols have been compromised over the years, owing to various code vulnerabilities or centralization problems. However, stealing of money is the easiest part, while moving that money and cashing it out is nearly impossible. This is primarily because most crypto transactions are recorded on a public …
Adoption / April 28, 2022
Cross-chain bridge RenBridge laundered $540M in hacking proceeds: Elliptic
Cross-chain bridges have been the target of more than a few hacks this year, but new data from blockchain analytics provider Elliptic alleges one has been used to launder over half a billion dollars in ill-gotten crypto assets. According to an Aug. 10 report, crypto bridge RenBridge has facilitated the laundering of at least $540 million in proceeds of crime since 2020 through a process known as chain hopping — converting one form of cryptocurrency into another and moving it across multiple blockchains. Elliptic said that decentralized cross-chain bridges provide “an unregulated alternative to exchanges for transferring value between blockchains.” …
Technology / Aug. 11, 2022
Into the storm: The murky world of cryptocurrency mixers
Cryptocurrency mixing services are a divisive subject in the industry. Some advocate for the privacy-enabling features of these protocols while others maintain that they are mainly used for illicit means. For platforms like Tornado Cash, the mainstream verdict is “guilty as charged.” The infamous decentralized mixing protocol was sanctioned by the United States Office of Foreign Assets Control (OFAC) in August 2022, essentially making it illegal for anyone to make use of the service. Tornado Cash continues to be a contentious topic and one of its developers, Alexey Pertsev, controversially remains in detention in the Netherlands while investigators look to …
Regulation / Dec. 7, 2022
DeFi exploits and access control hacks cost crypto investors billions in 2022: Report
Cyber criminals used a variety of novel ways to carry out hacks and exploits in 2022, with over $2.8 billion of cryptocurrency stolen last year. According to a report from CoinGecko using data sourced from DeFiYield’s REKT Database, nearly half of the total crypto stolen in 2022 was fleeced using diverse methods. This includes bypassing verification processes, market manipulation, ‘crowd looting’ as well as smart contract and bridge exploits. The biggest hack of 2022 was carried out through an access control hack. Sky Mavis, the developer behind popular game Axie Infinity, saw its Ronin bridge hacked in March 2022, leading …
Blockchain / Feb. 13, 2023