The team confirms that CrediX recovers $4.5M in stolen crypto after dealing with the exploiter; users are to be refunded within 48 hours.
Protocol for money market abstraction infrastructure. CrediX’s successful negotiation of the recovery of the assets taken in a $4.5 million exploit is encouraging for consumers hoping to get their bitcoin back.
According to blockchain security company Cyvers, CrediX experienced a security breach on Monday in which a wallet backed by Tornado Cash bridged more than $4.5 million worth of digital assets to the Ethereum network.
The attacker agreed to restore the stolen assets in exchange for an unknown amount from the CrediX treasury, according to a startling development with which CrediX announced it had achieved a private settlement.
CrediX posted on X, “We successfully negotiated with the exploiter, who agreed to return the funds within the next 24 to 48 hours in exchange for money that the CrediX Treasury fully paid.”
Within the following 48 hours, the protocol intended to airdrop the recovered monies to all impacted users’ addresses, and it continued.
Cointelegraph has contacted Credix for additional information regarding the specifics of the negotiations and if the return counts as a white hat bounty.
Although the number of cryptocurrency hacks has increased in 2025, some attackers are opting to return stolen assets in return for rewards or negotiated settlements.
On July 11, the team offered a $5 million white hat bounty in exchange for another exploiter returning $40 million that the GMX exploit had stolen.
Another crook gave in to the increasing pressure from blockchain investigators worldwide in May 2024 and returned $71 million obtained from a wallet poisoning fraud.
The money was returned soon after the on-chain security company SlowMist released an analysis of the attacker’s possible Hong Kong-based intellectual property, indicating that the thief was worried about the consequences.
By 2025, Crypto Exploits Will Have Surpassed $2.5 Billion
Cryptocurrency hacks, exploits, and scams increased to $2.47 billion in the first half of 2025, with over $800 million lost across 144 incidents in Q2, a 52% drop from Q1, according to research released by CertiK on June 30.
This indicates a rising need for improved cybersecurity solutions.
According to a survey by an on-chain security company, Immunefi, nearly 80% of cryptocurrencies never see a price recovery following a breach or attack.
Projects are frequently harmed more by this devaluation than by the exploit itself.
However, conventional banking infrastructure is also being targeted by hackers.
According to Cointelegraph, the service provider that links Brazil’s Central Bank to regional banks and other financial institutions, C&M Software, was breached on July 5 for $140 million across six linked institutions.
According to local media sites, the incident happened because a C&M employee allegedly sold the exploiter his login credentials for roughly $2,700, giving them access to the banking system and its reserve funds.
