Credix Hack Exposes Major Admin Lapse
DeFi just took another L. Lending protocol Credix got hit with a $4.5 million exploit—and the worst part? The hacker had been chilling with admin access for six days before striking. That’s not just a hack. That’s a full-on inside job move.
Security crew SlowMist caught the action when they noticed weird behavior in the Credix multisig. Digging deeper, they found the attacker had somehow been added as both a multisig admin and bridge controller through ACLManager—a big oof for the dev team. With that access, the attacker minted fake collateral, borrowed real assets, and drained the pool like it was a clearance sale.
Credix Hack: Tornado Funded, Ethereum Routed
On-chain sleuths at Cyvers tracked the wallet back to Tornado Cash, the crypto privacy tool that’s basically a red flag in DeFi. After the grab, most of the stolen funds got shuffled over to Ethereum, making recovery that much harder.
The Credix team has since pulled their site offline—no new deposits, no official updates, and no word on whether users will get their funds back. Not the best look, especially after they locked in a $60M credit facility last year to scale.
The lesson from this Credix Hack? Weak admin controls are like leaving your vault wide open with a neon sign saying “Free Cash.” Until there’s clarity, users should revoke all approvals and avoid interacting with the protocol.
YOU MIGHT ALSO LIKE: Bitcoin Drops to $113K: Eric Trump Says “₿uy the Dip” in Bold Crypto Call
