Socket bridge victims will be made whole

The Socket Tech team negotiated the return of stolen ETH from hacker

article-image

helen_g/Shutterstock modified by Blockworks

share

Socket Tech, a blockchain interoperability protocol, has announced a compensation plan for those affected by the Jan. 16 security incident that occurred on their network.

The exploit was more limited in scope than originally thought — affecting only 232 users — but those affected lost about $3.3 million in assets.

The team announced in a Thursday blog post that “a series of negotiations” with the hacker resulted in the recovery of 1032 ether (ETH) — about $2.3 million at current prices. ETH itself is down about 11% since the time of the incident, alongside the broader crypto market.

Read more: Socket Tech security breach affects multiple dapps and wallets

Socket is making up the difference in USD terms, distributing $1.1 million to affected wallets. Users will have to sign an on-chain message to prove wallet ownership, but importantly — given the nature of the original exploit — recipients do not need to grant any approvals to claim reimbursement.

Loading Tweet..

The original exploit targeted a subset of users who had granted unlimited approvals to tokens in their wallets — a common, if misguided, phenomenon in DeFi.

Read more: $80M lost in first hack of 2024

The concern was heightened by the fact that many users were unaware they were utilizing Socket Protocol in the first place. This protocol is commonly used behind the scenes to bridge the Ethereum network with over a dozen other blockchains that utilize EVM (Ethereum Virtual Machine) infrastructure.

In its post-mortem on the incident, Socket noted that since they “default to finite approvals within Socket API, Socket Plugin [and] bungee.exchange, the damage was limited.”

Multiple security researchers collaborated on the recovery, including Seal911, Slowmist, and Hexagate.

Read more: Blockchain security experts team up to improve industry threat response

The official link to claim, according to the post, is recovery.socket.tech.

Nefarious parties will likely seek to exploit naive users, prompting Socket to conclude with a warning:

“We expect scammers to send out fake phishing links. Refrain from clicking on any 3rd party links.”


Start your day with top crypto insights from David Canellis and Katherine Ross. Subscribe to the Empire newsletter.

Explore the growing intersection between crypto, macroeconomics, policy and finance with Ben Strack, Casey Wagner and Felix Jauvin. Subscribe to the Forward Guidance newsletter.

Get alpha directly in your inbox with the 0xResearch newsletter — market highlights, charts, degen trade ideas, governance updates, and more.

The Lightspeed newsletter is all things Solana, in your inbox, every day. Subscribe to daily Solana news from Jack Kubinec and Jeff Albus.

Tags

Upcoming Events

Javits Center North | 445 11th Ave

Tues - Thurs, March 18 - 20, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

Brooklyn, NY

TUES - THURS, JUNE 24 - 26, 2025

Permissionless IV serves as the definitive gathering for crypto’s technical founders, developers, and builders to come together and create the future.If you’re ready to shape the future of crypto, Permissionless IV is where it happens.

recent research

Research Report Templates.png

Research

An overview of the Base Ecosystem, with a focus on market leaders.

article-image

Although bitcoin hitting $120k by year’s end is looking unlikely

article-image

About 270 million HYPE has been claimed, valued around $7.6 billion

article-image

Stanford professors David Mazières and Dan Boneh will lead the lab alongside a cohort of graduate student researchers

article-image

With more companies holding BTC, bitcoin yielding strategies could become “a new corporate finance norm,” CoinShares posed

article-image

The proposal comes after Polygon governance considered a controversial use of bridged liquidity for yield

article-image

Can the community balance its decentralized ethos with the need for inclusivity and constructive debate?