{"id":129879,"date":"2025-05-23T14:21:35","date_gmt":"2025-05-23T14:21:35","guid":{"rendered":"http:\/\/cryptospotters.net\/?p=129879"},"modified":"2025-05-23T14:21:35","modified_gmt":"2025-05-23T14:21:35","slug":"twice-lucky-cetus-recovery-plan-on-sui-mirrors-a-solana-blueprint","status":"publish","type":"post","link":"http:\/\/cryptospotters.net\/?p=129879","title":{"rendered":"Twice lucky? Cetus\u2019 recovery plan on Sui mirrors a Solana blueprint"},"content":{"rendered":"<p>Source: Cointelegraph.com NewsThe bounty offer to recover stolen funds from Sui-based decentralized exchange (DEX) Cetus closely resembles a successful strategy used by a Solana project three years ago.<br \/>\nIt turns out that Cetus shares the same development team as Crema Finance, a Solana-based DeFi project that suffered a $9-million hack in 2022 but recovered most of the funds by negotiating with its hacker. Now, Cetus is relying on the same strategy.<br \/>\nCetus is asking the hacker to return all but $6 million, or 2,324 Ether (ETH), of the stolen funds in exchange for a promise not to pursue legal action. The protocol lost $223 million to an exploit on May 22.<br \/>\nThe size of the bounty has sparked backlash from users, with many calling for a formal compensation plan instead. Several community members argue that even if funds are recovered, most of the damage has already been done \u2014 especially to holders of the CETUS token, which plummeted in value following the incident.<br \/>\nMeanwhile, Sui validators are also under fire for their role in freezing the funds. The move is aimed at aiding recovery, yet critics say it exposes centralization risks in the network.<br \/>\nCETUS immediately dropped around 35% following the hack. Source: CoinGeckoSui\u2019s Cetus devs have a phantom exchange on Solana<br \/>\nA similar negotiation strategy used by the Cetus team on Sui was successfully employed years ago to recover funds for Crema. The Solana project hasn\u2019t posted on its X account since March 2023, and its trading platform now sees negligible volume, but it still didn\u2019t end well for the hacker.<br \/>\nCrema suffered an approximately $9-million hack in 2022. Much like the Cetus case, the Crema hacker was offered a deal to return the funds while keeping $1.6 million in exchange for not reporting the attack to law enforcement.<br \/>\nCetus offers a $6-million reward and exemption from further legal action from the project if the remaining funds are returned. Source: SuiVisionThe hacker is believed to have been caught and sent to prison. In April 2024, the US Attorney\u2019s Office for the Southern District of New York sentenced Shakeeb Ahmed to three years in prison for hacking two separate cryptocurrency exchanges. One was identified as Nirvana Finance, while the other was not named.<br \/>\nRelated: Which senators invest in crypto? 11 lawmakers have blockchain-related investments<br \/>\nThe details of the unnamed exchange\u2019s case match Crema\u2019s hack, including the exact date of the exploit and the terms of the agreement.\u00a0<br \/>\nNorbert Bodziony, founder of Nightly App, claims the Cetus team was behind Crema Finance.<br \/>\nCrema Finance suffered a hack in July 2022. Source: Norbert BodzionyBodziony declined to disclose how he learned of the relationship to Cointelegraph but added that the connection is \u201ccommonly known\u201d in Sui\u2019s developer circles.\u00a0<br \/>\nCointelegraph reached out to Cetus to confirm the connection between the two projects, but the team had not responded by publication.<br \/>\nCointelegraph has separately learned that both projects are founded by Henry Du.<br \/>\nSave Cetus; centralize Sui<br \/>\nSui\u2019s validators have collectively blocked transactions from the hacker\u2019s addresses, effectively freezing $162 million of the stolen funds on Sui. Around $63 million had already been bridged to Ethereum before these controls were implemented.<br \/>\nAlthough the coordinated effort has been effective in preventing the funds from being laundered, the cryptocurrency community has criticized Sui for being too centralized.<br \/>\n\u201cSUI\u2019s validators are colluding to CENSOR the hacker\u2019s TXs right now! Does that make SUI centralized? The short answer is YES; what matters more is why? The \u2018founders\u2019 own the majority of supply &amp; there are only 114 validators!\u201d Justin Bons, founder of Cyber Capital, wrote on X.<br \/>\nSome users challenge Bons\u2019 claim, arguing that decentralization doesn\u2019t mean a free-for-all. Source: Squatch\/Justin BonsAs Bons pointed out, Sui has just 114 validators \u2014 far fewer than its more established smart contract peers. Ethereum has over 1 million validators, while Solana has 1,157.<br \/>\nMeanwhile, members of the Sui community defended the move, arguing that this is how real-world decentralized chains should function.<br \/>\n\u201cDecentralization isn\u2019t about standing by while people get hurt, it\u2019s about the power to act together, without needing permission,\u201d said one member of the Sui community.<br \/>\nRelated: WLFI\u2019s DeFi credentials under fire after Sui partnership<br \/>\nFollowing the hack, Sui developers committed code for a proposed function that would have allowed specific transactions to bypass all signing and safety checks by adding them to a whitelist.\u00a0<br \/>\nWhile the function could have been used to help recover stolen funds, it also raised concerns about centralized control and the erosion of decentralization. The code was ultimately not merged and is not live on the network.<br \/>\nSUI\u2019s price has also been damaged by the Cetus exploit. Source: CoinGeckoSui and Cetus backlash contrasts recent hacks<br \/>\nThe Cetus exploit has spotlighted the persistent security challenges in DeFi while raising deeper questions around who holds the reins in supposedly decentralized networks like Sui.<br \/>\nThe team\u2019s $6-million offer to the hacker mirrors the playbook it used with Crema \u2014 but this time, the crypto community isn\u2019t as forgiving. With CETUS tanking, trust fractured and validators freezing funds, critics are asking whether Sui\u2019s decentralization is more appearance than reality.<br \/>\nThe debate over decentralization isn\u2019t unique to Sui. When Bybit lost $1.4 billion in a February hack linked to North Korean state actors, security experts and users urged platforms like THORChain and eXch to block the funds.\u00a0<br \/>\nIn that case, THORChain received some backlash for not stepping in, which is the exact opposite of what Sui is being criticized for now.<br \/>\nAs of now, the hacker hasn\u2019t accepted Cetus\u2019 offer. Two Ethereum wallets tied to the exploiter still hold over $60 million in ETH, with no movement at the time of writing. The Sui addresses remain paralyzed.<br \/>\nMagazine: TradFi is building Ethereum L2s to tokenize trillions in RWAs: Inside story<a href=\"https:\/\/cointelegraph.com\/news\/cetus-hack-sui-successful-solana?utm_source=rss_feed&amp;utm_medium=rss&amp;utm_campaign=rss_partner_inbound\" target=\"_blank\" class=\"feedzy-rss-link-icon\" rel=\"noopener\">Read More<\/a><\/p>","protected":false},"excerpt":{"rendered":"<p>Source: Cointelegraph.com NewsThe bounty offer to recover stolen funds from Sui-based decentralized exchange (DEX) Cetus closely resembles a successful strategy used by a Solana project three years ago. It turns&hellip; <\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[5],"tags":[],"_links":{"self":[{"href":"http:\/\/cryptospotters.net\/index.php?rest_route=\/wp\/v2\/posts\/129879"}],"collection":[{"href":"http:\/\/cryptospotters.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/cryptospotters.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"http:\/\/cryptospotters.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=129879"}],"version-history":[{"count":0,"href":"http:\/\/cryptospotters.net\/index.php?rest_route=\/wp\/v2\/posts\/129879\/revisions"}],"wp:attachment":[{"href":"http:\/\/cryptospotters.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=129879"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/cryptospotters.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=129879"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/cryptospotters.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=129879"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}