Bitget App
Trade smarter
Open
HomepageSign up
Bitget>
News>
Radiant Capital appears to suffer $51 million exploit on its BNB Chain and Arbitrum instances

Radiant Capital appears to suffer $51 million exploit on its BNB Chain and Arbitrum instances

The Block2024/10/15 16:00
By: The Block
ARB+2.18%BNB+2.18%RDNT+2.05%
Quick Take The attack began on Radiant’s Ethereum Layer 2 Arbitrum instance and then moved onto BNB Chain, Arkham data shows. The suspected exploiter’s wallet holds over $32 million worth of Arbitrum-based assets and around $18 million worth of tokens on BNB Chain.
Radiant Capital appears to suffer $51 million exploit on its BNB Chain and Arbitrum instances image 0

Omnichain money market Radiant Capital RDNT -7.43% seems to be undergoing an exploit, according to onchain evidence and Web3 security Ancilia. The attack began Wednesday afternoon on Radiant’s Ethereum ETH +1.04% Layer 2 Arbitrum ARB -0.78% instance and then moved onto BNB +1.39% Chain, according to Arkham Intelligence data .  

“We have noticed several transferFrom user's account through the contract 0xd50cf00b6e600dd036ba8ef475677d816d6c4281. Please revoke your approval ASAP. It seems like the new implementation had vulnerability functions,” Ancilia wrote on X . 

A transferFrom exploit uses a smart contract’s transferFrom function to enable one account to send a specified number of tokens from a target account to a third account. It generally requires the victim’s account to grant permission to interact with a spoofed wallet address. Ancilia is warning Radiant users to revoke all Radiant contract addresses as a safety measure.

"Radiant capital has fallen victim to a hack causing $51mm in losses so far across Arbitrum and BnB chain. The Ethereum and Base deployments seem to be secure but we would warn anyone to be careful interacting with these contracts at this time," Tony Ke, security research lead at Fuzzland, told The Block in an interview.

According to Ancilia, a backdoor contract was deployed at approximately 17:09 UTC on Wednesday, enabling the unknown attacker to gain unauthorized access and begin transferring tokens. 

"Radiant leverages a multisig setup for their smart contract controls which seems to have been compromised internally," Ke said. The attack profile suggests that someone was either phished or there was a compromised computer or an inside attacker that led to Radiant's private keys leaking. 

"As we learn more information about how this occurred, we will try to work in conjuction with the Radiant team to help in any fund recovery efforts possible," Ke said.

The hacker transferred wrapped versions of BNB, ETH, USDC and USDT tokens, among others, from a Radiant-controlled wallet to a single address beginning 0x0629b. That wallet currently has a BNB balance of over $5 million worth of tokens. That same wallet’s account on DeBank shows a $51 million balance , with a 2,619,512.54% increase in token holdings since it was created, indicating the attack could be far more widespread.

The attacker’s address holds over $32 million worth of Arbitrum-based assets and around $18 million worth of tokens on BNB Chain. Its largest holdings are ETH derivatives wstETH and weETH. 

Earlier this year, Radiant Capital lost around 1900 ETH, worth $4.5 million, in a flash loan attack. 

Editor's note: Adds context about the hack and quotes from Fuzzland's Tony Ke.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
PoolX: Earn new token airdrops
Lock your assets and earn 10%+ APR
Lock now!

You may also like

New spot margin trading pair — HOLO/USDT!
Bitget Announcement2025/09/12 07:46
FUN drops by 32.34% within 24 hours as it faces a steep short-term downturn

- FUN plunged 32.34% in 24 hours to $0.008938, marking a 541.8% monthly loss amid prolonged bearish trends. - Technical breakdowns, elevated selling pressure, and forced liquidations highlight deteriorating market sentiment and risk-off behavior. - Analysts identify key support below $0.0080 as critical, with bearish momentum confirmed by RSI (<30) and MACD indicators. - A trend-following backtest strategy proposes short positions based on technical signals to capitalize on extended downward trajectories.

Bitget-RWA2025/09/12 06:14
OPEN has dropped by 189.51% within 24 hours during a significant market pullback

- OPEN's price plummeted 189.51% in 24 hours to $0.8907, marking its largest intraday decline in history. - The token fell 3793.63% over 7 days, matching identical monthly and yearly declines, signaling severe bearish momentum. - Technical analysts cite broken support levels and lack of bullish catalysts as key drivers of the sustained sell-off. - Absence of stabilizing volume or reversal patterns leaves the market vulnerable to further downward pressure.

Bitget-RWA2025/09/12 06:14
New spot margin trading pair — LINEA/USDT!
Bitget Announcement2025/09/11 10:04

Trending news

More
1
New spot margin trading pair — HOLO/USDT!
2
FUN drops by 32.34% within 24 hours as it faces a steep short-term downturn

Crypto prices

More
Bitcoin
Bitcoin
BTC
$116,046.04
+1.37%
Ethereum
Ethereum
ETH
$4,659.27
+5.39%
XRP
XRP
XRP
$3.1
+2.77%
Tether USDt
Tether USDt
USDT
$1
+0.05%
Solana
Solana
SOL
$240.3
+6.15%
BNB
BNB
BNB
$924.4
+3.15%
USDC
USDC
USDC
$0.9997
-0.01%
Dogecoin
Dogecoin
DOGE
$0.2714
+8.06%
TRON
TRON
TRX
$0.3511
+1.59%
Cardano
Cardano
ADA
$0.9049
+2.47%
How to sell PI
Bitget lists PI – Buy or sell PI quickly on Bitget!
Trade now
Become a trader now?A welcome pack worth 6200 USDT for new users!
Sign up now
Trade smarter