Nexo

Start Earning Up to 16% Interest Automatically

Learn More
Home Ā» Analysis Ā» Nexus Mutual Founder Loses $8 Million in MetaMask AttackĀ 

Nexus Mutual Founder Loses $8 Million in MetaMask AttackĀ 

by

The founder of Nexus Mutual has been hacked for $8 million in a ā€œtargeted personal attack.ā€

Despite Data Breach, Liquid Exchange Listed New Tokens Before Informing Users
Shutterstock cover by Natasa Adzic

Key Takeaways

  • Hackers gained remote access to Hugh Karpā€™s computer and modified a crypto wallet extension.Ā 
  • The fake Metamask extension duped Karp into sending $8 million NXM to the attackersā€™ address.
  • Karp offered a $300,000 bounty if the attacker returned the funds.Ā 

Share this article

Hackers have drained $8 million in NXM tokens from Nexus Mutual founder Hugh Karp. While Karp is confident of catching the culprits, hackers are already converting the stolen funds on a decentralized exchange.

Nexus Mutual Identifies Two Leads

At 9: 45 am UTC, a confirmed Ethereum smart contract transaction transferred 370,000 NXM to another KYC-ed wallet NXM wallet. 

Nexus Mutual instantly flagged the transaction, claiming it to be a remote access attack on Hugh Karp’s personal computer. Reportedly, the attackers changed a Metamask extension and tricked Karp into approving the transfer. 

Both Nexus Mutual and MetaMask are secure; only Karp has been affected. 

Thanks to the KYC compliance needed to join the protocol, the Nexus Mutual team is confident that they will identify the attacker.

Indeed, their investigation has already revealed the KYC details of the receiving address 11 days ago. Later, the registered member changed the associated Ethereum address to a new one. They have also offered the attacker a $300,000 settlement if they return the funds.

The team has two leads as to the attacker’s identity already.

The funds are currently being exchanged via 1inch Exchange and are trackable on Ethereum. If the hacker attempts to withdraw fiat from a centralized exchange like Binance or Coinbase, they will likely be identified. 

Share this article

The information on or accessed through this website is obtained from independent sources we believe to be accurate and reliable, but Decentral Media, Inc. makes no representation or warranty as to the timeliness, completeness, or accuracy of any information on or accessed through this website. Decentral Media, Inc. is not an investment advisor. We do not give personalized investment advice or other financial advice. The information on this website is subject to change without notice. Some or all of the information on this website may become outdated, or it may be or become incomplete or inaccurate. We may, but are not obligated to, update any outdated, incomplete, or inaccurate information.

Crypto Briefing may augment articles with AI-generated content created by Crypto Briefingā€™s own proprietary AI platform. We use AI as a tool to deliver fast, valuable and actionable information without losing the insight - and oversight - of experienced crypto natives. All AI augmented content is carefully reviewed, including for factural accuracy, by our editors and writers, and always draws from multiple primary and secondary sources when available to create our stories and articles.

You should never make an investment decision on an ICO, IEO, or other investment based on the information on this website, and you should never interpret or otherwise rely on any of the information on this website as investment advice. We strongly recommend that you consult a licensed investment advisor or other qualified financial professional if you are seeking investment advice on an ICO, IEO, or other investment. We do not accept compensation in any form for analyzing or reporting on any ICO, IEO, cryptocurrency, currency, tokenized sales, securities, or commodities.

See full terms and conditions.