Decentralized finance firm Thala Labs successfully recovered $25.5 million worth of liquidity pool tokens that were stolen due to a vulnerability in its v1 farming contracts. The incident, which occurred on November 15, prompted Thala to immediately pause related contracts and freeze $11.5 million in assets. The hacker was swiftly identified with the aid of law enforcement and crypto investigators, leading to the return of the funds just six hours after the breach. In return for the full restitution of user assets, the hacker received a bounty of $300,000. However, since the incident, the Thala token has seen a 35% drop in value. Thala indicated that affected users would not need to take any additional actions and their positions would be fully restored. Following the recovery, the protocol's farming features remain paused for an extensive review of the codebase. The vulnerability was linked to Thala’s integration with Move, and Thala's CEO acknowledged that while security issues might continue to arise, the aim is to reduce their frequency and severity over time.

Source 🔗