White hat hacker recovers $2M in ETH from faulty 2016 ICO contract

Created at 1 Jun · 03:08 UTC4 sources↑ Market-relevant4 events

IN SHORT

A white hat hacker has recovered approximately $2 million worth of ETH locked in a faulty 2016 HongCoin ICO smart contract. The bug prevented 48 original investors from reclaiming their funds for nine years. The hacker exploited an integer overflow vulnerability to unlock the Ether, which can now be claimed by the investors.

Key Numbers

$2 millionrecovered funds value

1,003 ETHEther recovered

48investors refunded

2016ICO smart contract year

9 yearsfunds locked duration

3.56 ETHcapped total refunds due to bug

Who's Involved

0xflorent

pseudonymous white-hat hacker who recovered funds

HongCoin

decentralized venture capital fund with faulty ICO

White hat hacker recovers $2M in ETH from faulty 2016 ICO contract

Key facts

A white hat hacker recovered 1,003 ETH, valued at approximately $2 million, from a 2016 HongCoin ICO smart contract.
A bug in the contract's refund function prevented investors from receiving their ETH back after the ICO failed to meet its funding goal.
The hacker exploited an integer overflow vulnerability in an admin function to unlock the funds.
The recovered funds can now be claimed by 48 original investors.
Two investors have already reclaimed 96.5 ETH (~$193,000).

The HongCoin ICO in 2016 failed to reach its funding goal, and the smart contract was designed to automatically refund investors. However, a bug in the refund function prevented this, locking the Ether for nearly a decade. This situation highlights the risks associated with early-stage cryptocurrency projects and smart contract vulnerabilities, demonstrating that even old, seemingly inaccessible funds can sometimes be recovered.

White hat hacker recovers $2M in ETH from faulty 2016 ICO contract

PiQ Daily

Key facts

White hat hacker recovers $2M in ETH from faulty 2016 ICO contract

PiQ Daily

Key facts

Get the newsletter.