Skip to content

Timeline of Events

  • Exploit begins: Attacker calls deposit() on QBridge Ethereum contract with fake ETH deposits
  • qXETH minted on BSC: The bridge relayer, fooled by the fake events, mints qXETH tokens for the attacker on BSC
  • $80M drained: Attacker uses fake qXETH as collateral to borrow ~$80M in real assets from Qubit Finance lending pools
  • Qubit team notified: Team becomes aware of the ongoing exploit
  • Official Qubit tweet: Team publicly acknowledges the hack and asks hacker to contact them

January 29–31, 2022 — Initial Response

Section titled “January 29–31, 2022 — Initial Response”
  • Team offers the hacker a $250,000 bug bounty to return the stolen $80M
  • Major media outlets begin reporting:
    • Bloomberg: “Hackers Seize $80 Million From Qubit in Latest DeFi Attack”
    • CoinDesk: “DeFi Protocol Qubit Finance Exploited for $80M”
    • CoinTelegraph, The Verge, ZDNet, The Register, and more
  • Team states they have reported to police in two locations — no case numbers ever shared
  • Team does not contact Binance security or other major exchanges/bridges to blacklist hacker wallet
  • Aaron Yooshin Kim (CTO) deletes his LinkedIn profile
  • Community notices and posts on Reddit about the deletion
  • No explanation given for why a senior executive would erase their professional presence during a crisis

February 2022 — Victims Silenced, Questions Unanswered

Section titled “February 2022 — Victims Silenced, Questions Unanswered”
  • Moderator @moleh systematically removes victims from the official Telegram group
  • Community members who contact the team with information about the hacker receive no response
  • Team does not establish any meaningful bounty for identifying the hacker
  • Victims begin organizing independently

February–March 2022 — Victims Alliance Forms

Section titled “February–March 2022 — Victims Alliance Forms”
  • Qubit Victims Alliance established
  • Telegram group created: @qbtvictims
  • Twitter/X account: @QV_Alliance
  • Victims appeal to CZ and Binance for help — no meaningful response
  • Arweave News publishes: “Inside The Struggle Of Qubit’s $90M Heist Victims With Mound Inc., A Binance-Endorsed Company”

March 18, 2022 — Last Update on Original Site

Section titled “March 18, 2022 — Last Update on Original Site”
  • Original victims’ GitBook site last updated
  • Victims’ group page updated with community links
  • No funds returned to victims
  • No public resolution announced by Mound Inc.
  • Mound Inc. website (mound.finance) goes offline
  • Team members largely disappear from public view
  • The stolen $80M remains unaccounted for
  • Victims continue to seek accountability

DescriptionAddress / Link
Hacker wallet (ETH)0xd01ae1...25c7
Hacker wallet (BSC)0xd01ae1...25c7
Attack transaction0x8c5877d1...
Largest victim wallet0xba19a0...983d