The hacker responsible for the October 2024 Radiant Capital exploit has moved approximately $10.8 million worth of Ethereum (ETH) to the privacy-focused mixer Tornado Cash, as reported by blockchain security firm CertiK. This transaction, confirmed on October 23, 2025, involves funds stolen during the initial attack, making it harder for authorities to trace and recover the assets.
The Radiant Capital hack occurred on October 16, 2024, resulting in the theft of $53 million. Initially, the stolen funds included ARB and BNB tokens, but the hacker converted most of them to ETH. The exploit targeted a vulnerability in the platform's multi-signature wallet system, allowing the attacker to alter the credit pool's smart contract and drain assets.
According to CertiK, the hacker used several DeFi protocols, such as Stargate Bridge, Synapse Bridge, and Drift FastBridge, to route the funds before depositing the ETH into Tornado Cash. This mixer breaks the on-chain link between sender and receiver addresses, significantly obstructing tracking efforts.
Tornado Cash, a decentralized application designed for privacy, is often misused by hackers to launder stolen funds despite regulatory crackdowns in some countries. Radiant Capital is working closely with law enforcement and analytics firms like Chainalysis to investigate and reclaim the funds, but the use of mixers complicates these endeavors.
This event underscores ongoing security challenges in the DeFi ecosystem, emphasizing the need for enhanced smart contract audits, robust risk management, and user vigilance. It serves as a critical reminder of the high risks associated with decentralized finance platforms, even as they offer innovative opportunities.
BTC
USDT
DOGE