Some Funds Stolen in SushiSwap Exploit Recovered, but Blackhat Hackers Have the Rest

Funds recovered by whitehat security teams to be returned to users while others have been lost to blackhat hackers

April 12, 2023 12:30 pm

Subbotina Anna/Shutterstock modified by Blockworks

SushiSwap is now safe to use after attackers drained more than $3 million last weekend, the blockchain protocol said Wednesday. It is now preparing to return some of the stolen funds to affected users, though not all are expected to recoup their losses quickly.

Exploiters found an approval bug in SushiSwap’s Route Processor 2 last weekend, taking roughly $3.3 million from the smart contract.

The majority of addresses that approved SushiSwap’s problematic smart contract were on Arbitrum and Polygon. The contract had been deployed on Arbitrum a few weeks ago for testing.

Newsletter

Subscribe to The Breakdown

As part of the exploit, funds got swept by whitehat security teams while some were lost to blackhat hackers, the SushiSwap team said in a tweet. Those who haven’t used SushiSwap in the past 10 days were likely not impacted.

The company said that user funds in the whitehat contract are safe and will be claimable shortly through a Merkle Claim contract and website the protocol is building.

SushiSwap users whose funds are not in the whitehat contract must contact the protocol and share the transaction ID and blockchain data for the lost funds.

Loading Tweet..

“Blackhat funds will take longer to process, as the team will have to manually verify the legitimacy against on-chain data that validates the claim and then pay it out accordingly,” SushiSwap tweeted.

The SushiSwap hack came after the number of crypto attacks spiked during the year’s first quarter, according to a report by Web3 security platform Immunefi.

Various DeFi protocols that have become victims to such exploits have been able to successfully recover some or all of their stolen funds in recent months.

Scammers often try to trick DeFi users into granting them access to their funds — a method services such as Revok.cash seek to combat. Blockchain security firm PeckShield had urged SushiSwap users who had approved the relevant smart contract to immediately revoke its approval.

Get the news in your inbox. Explore Blockworks newsletters:

The Breakdown: Decoding crypto and the markets. Daily.
0xResearch: Alpha in your inbox. Think like an analyst.

Tags

Newsletter

The Breakdown

Decoding crypto and the markets. Daily, with Byron Gilliam.

Upcoming Events

Digital Asset Summit 2026

Javits Center North | 445 11th Ave

Tues - Thurs, March 24 - 26, 2026

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

buy tickets learn more

recent research

Research

Neutrl: Unlocking Institutional OTC Yield for Stablecoins

Neutrl is a synthetic dollar protocol designed to monetize structural inefficiencies in crypto markets, with a particular focus on hedged OTC token arbitrage. By pairing discounted locked-token purchases with delta-neutral hedging, the protocol offers yields that are less dependent on funding rate cycles than traditional cash and carry strategies. Early traction has been strong, with TVL growing from $120M to $210M following the removal of deposit caps, while sNUSD currently yields materially more than competing yield-bearing stablecoins. The key question for Neutrl is scalability: whether access to high-quality OTC deal flow and disciplined liquidity management can support continued TVL growth without compressing returns.

by Kunal Doshi