White hat: I returned most of the stolen Nomad funds and all I got was this silly NFT

Published at: Aug. 24, 2022

Hackers behind the $190 million Nomad Bridge are now being incentivized with "whitehat" themed non-fungible tokens (NFTs) if they return nearly all of the funds they stole from the protocol at the start of this month.

The exclusive NFT, which simply depicts a white wizard’s hat, is being offered by NFT firm Metagame and can be minted by those that return at least 90% of their stolen funds to Nomad.

1/ Our friends at @metagame created an earned NFT as a thank you to whitehats who returned funds from the Nomad Bridge Hack. Head over https://t.co/TWwuJwnRXj to claim it! pic.twitter.com/V87rkGhBEE

— Nomad (⤭⛓) (@nomadxyz_) August 23, 2022

“If you haven’t yet returned funds, you can still do so now! Metagame checks your on-chain tx history automatically,” the Nomad team stated via Twitter on Aug. 23.

Speaking with Cointelegraph, Metagame founder Brenner Spear noted that while he has “no idea if it’ll nudge anyone to return funds that wouldn’t have otherwise,” the move is part of a broader attempt to foster and support good behavior in the sector:

“I am supportive of people doing the right things for the wrong reasons. More of the right things will happen, and maybe, people will start doing more of the right things for the right reasons too.”

The non-fungible token doesn’t have any function, as it essentially serves as a trophy to represent an act of good faith. The first 50 people to return the funds in relation to this promo, will also receive 100 FF tokens ($53) from web3 platform Forefront.

We at @Metagame have teamed up with @nomadxyz_ @nomadxyz_, @divine_economy @divine_economy, and @forefront__ @forefront__ to produce a free NFT exclusively mintable by Nomad whitehat hackers.Here’s what happened and why we’re giving status to this elite cohort of whitehats…

— brenner.eth (@BrennerSpear) August 23, 2022

The Nomad Bridge was initially hacked on Aug. 2, after bad actors discovered a security loophole in Nomad’s smart contracts which allowed them to extract funds that didn’t belong to them via dubious transactions.

According to a post-mortem analysis earlier this month from Coinbase’s principal blockchain threat intelligence researcher Peter Kacherginsky, and Heidi Wilder, a senior associate of the special investigations team, hundreds of copycats then joined in on the fun by copying the same code used to start the hack but slightly modified the target token, token amount and recipient addresses.

Related: Ethereum advances with standards for smart contract security audits

The concept doesn’t appear to have gone down well on Twitter, however, with many users taking the time to clown on the idea. @Huzmond wrote “Incentive go brrrrr” while @aldy_argr questioned whether this was a “comedian account?”

“That's what the team comes up with to solve the problem? Rewarding a hacker with worthless NFT?” @hinzpak chimed, with the Metagame team responding that “It was Metagame’s idea, and built by Metagame - we just brought it, Nomad. They have much more important things to focus on!.”

As of Aug. 8, Cointelegraph reported that white hat hackers had returned around $32.6 million of the total $190 million that was stolen.

Tags
Nft
Related Posts
Etherscan, CoinGecko warn against ongoing MetaMask phishing attacks
Popular crypto analytics platforms Etherscan and CoinGecko have parallelly issued an alert against an ongoing phishing attack on their platforms. The firms began investigating the attack after numerous users reported unusual MetaMask pop-ups prompting users to connect their crypto wallets to the website. Based on the information disclosed by the analytics firms, the latest phishing attack attempts to gain access to users’ funds by requesting to integrate their crypto wallets via MetaMask once they access the official websites. Security Alert: If you are on the CoinGecko website and you are being prompted by your Metamask to connect to this site, …
Blockchain / May 14, 2022
Yuga Labs’ BAYC, OtherSide Discord groups breached, over 145 ETH stolen
Yuga Labs, the creator of two of the most popular ape-themed nonfungible token (NFT) offerings — Bored Ape Yacht Club (BAYC) and OtherSide — witnessed yet another orchestrated phishing attack, with investors losing over 145 Ether (ETH) or nearly $260,000 at the time of writing. OKHotshot, a blockchain detective and a member of the Crypto Twitter community, alerted crypto investors about the compromise of two official Discord groups linked to BAYC and OtherSide NFTs. BAYC & OtherSide discords got compromised‼️ Seems because Community Manager @BorisVagner got his account breached, which let the scammers execute their phishing attack. Over 145E in …
Blockchain / June 5, 2022
Battle-hardened Ronin bridge to Axie reopens following $600M hack
Sky Mavis, developers of the popular play-to-earn (P2E) nonfungible token (NFT) game Axie Infinity have announced that the Ronin bridge is back online three months after it was hacked for more than $600 million. The Ronin bridge is an Ethereum sidechain built for Axie Infinity, and it enables users to transfer assets between the sidechain and the Ethereum mainnet. On March 29, 173,600 Ether (ETH) and 25.5 million USD Coin (USDC) was drained from the bridge after hackers managed to gain access to private validator keys. The hack was worth more than $620 million at the time. According to the …
Blockchain / June 29, 2022
Nifty News: Bill Murray’s wallet hacked, FIFA’s tokenized highlights, Muse tops charts, and more…
Popular comedic writer and actor Bill Murray had his Ethereum wallet hacked for around 110 Wrapped ETH (wETH) worth $172,000 late last week. The auction for the The Bill Murray 1,000 NFT drop was just coming to a close on Thursday Sept. 1, having generated a total of 119.2 wETH worth of sales as part of a charity fundraiser for Chive Charities. However hackers were reportedly watching Murray’s wallet all day, and pounced to swipe nearly all of the funds as the sale came to a close. While it is not 100% certain how the hackers gained access to Murray’s …
Music / Sept. 5, 2022
Moonbirds creator Kevin Rose loses $1.1M+ in NFTs after 1 wrong move
Kevin Rose, the co-founder of the nonfungible token (NFT) collection Moonbirds, has fallen victim to a phishing scam leading to more than $1.1 million worth of his personal NFTs stolen. The NFT creator and PROOF co-founder shared the news with his 1.6 million Twitter followers on Jan. 25 asking them to avoid buying any Squiggles NFTs until they manage to get them flagged as stolen. I was just hacked, stay tuned for details - please avoid buying any squiggles until we get them flagged (just lost 25) + a few other NFTs (an autoglyph) ... — KΞVIN R◎SE (,) (@kevinrose) …
Blockchain / Jan. 26, 2023