Odaily News Web3 security company CertiK released a report indicating that in the first half of 2025, Web3 security incidents resulted in losses of nearly $2.5 billion, with a net loss of $2.29 billion, exceeding the total for last year. Phishing attacks have become the biggest threat, with losses of about $400 million in the second quarter, accounting for half of the total losses for the quarter (about $800 million), far exceeding the same period last year. Although incidents of Private Key leakage have decreased and code vulnerability attacks remain at historical averages, vigilance is still needed for significant cases like the Cetus Protocol.

According to Gate News bot, the Sui-based DEX Cetus team, which was previously hacked, recently said that the team is moving towards full open source and has launched a new "white hat bounty program" to "encourage collective technical and security contributions". As part of the protocol reboot, the team has fixed the software vulnerabilities that led to the hack, restored the pool data to the correct pricing, and conducted a security audit of all code fixes and contract upgrades. The affected liquidity pool has been replenished with $7 million in cash reserves, a $30 million USDC loan from the Sui Foundation, and some of the assets recovered from the attackers. However, not all compromised pools have fully recovered, with the current recovery rate ranging from 85% to 99%, depending on the extent of the pool's losses during the attack.

Golden Finance reports that Cetus Protocol, a Sui-native decentralized exchange that suffered a large-scale attack of $220 million in May, is advancing its open source plan after recently restarting. On May 22, an attacker exploited a pricing mechanism vulnerability to withdraw tokens from Cetus's main liquidity pool. The protocol successfully froze $162 million of the stolen funds shortly after the attack occurred. Before the attack occurred, Cetus's trading volume had been on the rise, exceeding $5 billion in April and also reaching $5 billion in May, despite pausing operations after May 22. In a Medium post on June 7, the Cetus team stated a day before the relaunch that they were working towards full Open Source development and were launching a new white paper bounty program to "encourage collective contributions in technology and security." As a restart

Golden Finance reported that Slow Mist founder Yu Xian posted on the X platform, stating that after the Cetus theft incident was covered by the Sui Foundation, users can currently retrieve most of their funds. Slow Mist also received a $20,000 tip from Hoi (@JaceHoiX), and the hacker tracking is still ongoing.

Gate News bot reported that Cetus Protocol has confirmed that it will resume full functionality at 3:00 UTC on June 8, 2025. At that time, users will have access to all services such as trading, liquidity management, and reward collection. In response to the liquidity replenishment, the team deployed three specific measures: recovering and rebalancing the attacker's assets through the Sui validator on-chain voting; Invested about $7 million in the team to purchase missing assets; Secured a loan of 30 million USDC from the Sui Foundation. In the compensation scheme, the total amount of CETUS token compensation is 15% of the token supply, of which 5% will be available for claim when the platform restarts, and the remaining 10% will be unlocked linearly over the next 12 months. The team made it clear that there will be no additional token issuance, and only minor adjustments will be made to the release plan. If the assets are recovered subsequently, they will be used for user compensation or CETUS repurchase.

Gate News bot message, in May's development of encryption technology in the Crypto Assets community, the Bitcoin community introduced the BIP-177 proposal, planning to set the base unit to 1 Bitcoin. Ethereum successfully implemented the Pectra upgrade, and Vitalik subsequently published two articles on protocol simplification and the evolution of Rollup security. In terms of Layer 2 ecosystems, platforms like Optimism, ZKsync, and Polygon are actively implementing upgrades to enhance scalability and developer convenience. In the Solana ecosystem, Anza has introduced a new modular scheduler and consensus system proposal. The Sui network experienced the Cetus hacking incident, and measures have now been taken to freeze assets, with plans to recover assets through a special trading mechanism. In addition, public chains such as BNB Chain, Near, Filecoin, and Hyperliquid have completed key technological upgrades. In terms of application innovation, Google Wallet uses zero-knowledge proof technology for age verification, Coinbase has released the x402 payment protocol, and World Chain has launched the Orb Mini iris recognition device.

Gate News bot message, Sui ecological Liquidity platform Cetus announced that the Cetus Liquidity Aggregator has been relaunched, and the Cetus CLMM routing is temporarily closed and will be opened later. The full relaunch of Cetus is coming soon.

Cetus announced that it has safely transferred the funds from the $220 million Hacker attack to a multisignature trust Wallet to ensure a return to users. The Sui community approved the proposal to release $162 million for compensating users and restoring the full operation of the DEX. Cetus stated that contract upgrades and preparations for a restart are underway.

Cetus securely transfers funds attacked by hackers through a multisignature trust Wallet, promising to return them to users. The Sui community approves the proposal to release the seized funds, helping the DEX resume operations.

FTX launched the second phase of the repayment process, which is expected to release more than $5 billion; $800,000 remaining after James Wynn's liquidation; REX Shares plans to list Solana and Ethereum staking ETFs in the United States; Cetus will be fully restored within a week; Orange Cap Games' acquisition of Moonbirds, among others; Atticus valuation: $1.5-$2 billion; New York City vetoes Bitcoin municipal bond program; The SEC says meme tokens such as TRUMP are not regulated.

The Sui community released $162 million through on-chain proposals to address the impact caused by the Cetus vulnerability and ensure the DEX returns to full operation. The frozen funds will be held in custody and gradually returned to users. Cetus plans to complete the full recovery, including data, contract upgrades, and product features, within a week.

Odaily News Slow Mist stated in a post on the X platform that the Cetus Hacker has not returned the funds, holding more than 60 million USD worth of ETH without further transfers. They have currently received suspicious clues related to the Cetus Hacker submitted by community users, and more details may be disclosed later.

Gate News bot message, the Sui community has voted to approve the proposal to support the recovery plan for the recent Cetus hacker attack incident. The Sui Foundation stated that over 90% of the voting validators support the recovery plan, leading to the vote being concluded early in just four days. The proposal approved updates to the protocol, allowing the frozen funds controlled by the hacker to be transferred to a Multi-signature Wallet. Trusted parties such as Cetus, the Sui Foundation, and OtterSec will be responsible for managing this wallet, with the aim of safeguarding the protected assets for delivery to the affected users according to the recovery plan.

PANews May 28 news, Sui chain DEX protocol Cetus announced on official Twitter that this week's xCETUS rewards have been distributed as scheduled, as the relevant rewards were registered before the event occurred. However, due to the pause and recovery of CLMM liquidity pool operations, xCETUS staking rewards will be temporarily suspended for one week.

According to Gate News bot, the Sui community's proposal on "whether to return the stolen assets of the Cetus protocol through a special transaction" has opened voting, with a current support rate of 53%, and there are still about 6 days before the end of voting, and it will be passed in advance at 4 o'clock Beijing time on May 30 at the earliest. According to the proposal, the next upgrade of the Sui protocol will deploy two special transaction authentication mechanisms. These transactions will transfer approximately $162 million of frozen funds from the attacker's address to a multisig wallet jointly managed by Cetus, the Sui Foundation, and OtterSec. During the transaction, the attacker's address, the stolen asset object, and its destination address are all hard-coded.

Gate News bot message, the Sui Foundation stated that it is providing a secured loan to Cetus as part of its plan to quickly fully compensate users for their losses. The Cetus team will use the proceeds from this loan and assets in its treasury to cover the losses caused by stolen funds (which have been bridged out of the Sui network). This loan will enable Cetus to cover losses beyond its own capacity.

Gate News bot message, the Sui official announced an upgrade to its bug bounty program. Although the current bug bounty program mainly focuses on the core infrastructure of Sui and does not cover protocols, applications, or smart contracts built on it, the bounty scope will be expanded in the next six months to pay additional bounties for any protocol with a TVL exceeding 50 million USD, helping to incentivize bounty hunters to identify errors in the code of large protocols like Cetus built on Sui, in order to prevent such security incidents in the future.

Gate News bot news, SoSoValue data shows that the crypto market has experienced a pullback after consecutive pumps. The SUI ecosystem zone led the decline, with a 24-hour drop of 4.30%, where SUI fell by 4.15%, and Cetus Protocol (CETUS) and SUIA dropped by 10.80% and 17.50%, respectively. Bitcoin (BTC) retreated from 110,000 to 108,000, with a fall of 1.11%, while Ethereum (ETH) fluctuated around 2,500, with a drop of 0.98%.

Cetus has released an update on the hacker attack incident on the X platform, having blocked two Sui wallet addresses of the attacker and frozen the majority of the stolen funds. The remaining funds have been exchanged and stored in two Ethereum wallets. The CLMM pool and services will be gradually restored after comprehensive verification, reviewing the upgraded contracts, and implementing cross-party audits and real-time monitoring to improve risk management measures, control asset liquidity rate, and increase the testing coverage of smart contracts.

Gate News bot message, Cetus officially released a recent security incident report stating that on May 22, its CLMM liquidity pool was attacked via smart contracts. The attacker exploited vulnerabilities in the open source library and overflow check defects, implementing the attack by lowering the pool price, building a position at a high price, injecting inflated liquidity, and repeatedly extracting assets. Currently, Cetus has frozen two wallet addresses of the attacker on Sui, which contain most of the stolen funds, while the remaining funds have been cross-chain transferred to Ethereum.

According to Gate News bot, Sui announced that they will take comprehensive security enhancement measures in response to the incident caused by a mathematical library vulnerability at Cetus. Although this incident was not caused by a security flaw in Sui or Move, considering the losses suffered by users, Sui will invest 10 million dollars in security projects such as audits, bug bounty, and Formal Verification. These specific measures will be implemented through consultation with the developer community. At the same time, Sui will also provide explanations for the existing security measures.

According to Gate News bot, SUI is provisionally trading at $3.62 as of press time, and has not yet recovered from the $223 million Cetus Protocol hack on May 22. However, the 50-day, 100-day, and 200-day moving averages all send buy signals, indicating that SUI will continue its overall uptrend if it can withstand the losses caused by the hack. For now, SUI is still below the $4 resistance level. Traders are watching closely to see if it can break through the resistance level or if the aftermath of the Cetus attack will continue to weigh on the market.

According to Gate News bot, as reported by Wu Shuo, the Cetus team has released the latest developments on the hacker incident. Currently, some of the stolen funds remain frozen on the Sui chain, while the rest of the funds have been transferred off-chain. The team has adopted a dual approach to recovery: on one hand, negotiating with white hat hackers, and on the other hand, initiating legal proceedings. Meanwhile, the team proposed unlocking the frozen assets through PoS voting within the Sui community. Regarding service recovery, the aggregator function has been reopened, and the CLMM liquidity pools that were not affected by the attack will gradually resume operations after the data repair is completed. The development team is working on system data repairs while formulating compensation and fund recovery plans, and they promise to make every effort to compensate users for their losses.

Slow Mist analyzed the Cetus theft incident, pointing out that the attacker exploited a parameter overflow vulnerability to obtain a large amount of assets. The attacker used the checkedshlw function vulnerability to acquire various assets, with some funds being cross-chain to EVM addresses. Cetus has fixed the vulnerability, and $162 million has been frozen. Developers are advised to verify the boundary conditions of mathematical functions.

Gate News bot message, based on the analysis report released by the Slow Mist team, the Cetus protocol has been attacked, and the attacker exploited a vulnerability in the overflow detection of the checked_shlw function to carry out the attack. The attacker first borrowed haSUI through a flash loan, and then exploited a system vulnerability to exchange a large amount of liquidity with only 1 token. This attack resulted in an estimated loss of about $230 million, involving various digital assets such as SUI, vSUI, and USDC. The attacker transferred part of the funds to the EVM address through the Sui Bridge cross-chain and deposited $10 million in assets to Suilend. Currently, the SUI Foundation has frozen $162 million in stolen funds. Cetus has completed a bug fix, and the SlowMist team recommends that developers rigorously verify math function boundary conditions. Source: Wu Says

The analysis of the $230 million theft incident of Cetus released by Slow Mist shows that the attackers exploited an overflow detection bypass vulnerability, selecting parameters through precise calculations to exchange a minimal amount of tokens for a large amount of Liquidity assets. The attack demonstrated the power of mathematical overflow vulnerabilities, and it is recommended that developers strictly verify the boundary conditions of mathematical functions in smart contract development.

Sui officially announced on the X platform its support for the Cetus community voting proposal, which includes upgrading the protocol to return frozen funds and ensure asset security for users. However, Sui set two conditions when deciding to support the proposal: to remain neutral and forgo voting rights, while also requiring Cetus to commit to recovering assets to ensure full compensation for users.

Gate News bot message, according to the source Wu said, Sui official released a notice in response to the community voting proposal initiated by Cetus on the same day. The proposal aims to return frozen funds through a protocol upgrade without the need to rollback on-chain records or revoke transactions. The Sui team agrees to support this on-chain voting proposal and puts forward two specific requirements: first, the Sui official will maintain a neutral stance on the voting results, waive the voting rights, and is responsible for designing and executing a decision-making process that reflects the collective will of the Sui community. Relevant plans and code will be announced soon; second, Cetus must publicly commit to investing all financial resources to recover assets, ensuring that all users receive full compensation.

The Sui official has decided to support the Cetus community proposal to return frozen funds, but with additional conditions: remain neutral, give up voting rights, design and execute decision-making processes; Cetus must commit to recovering assets and fully compensating users. Since it involves the asset security of Cetus users, the Sui team has made careful considerations.

Gate News bot message, on-chain detective ZachXBT expressed his views on the $5 million bounty plan proposed by Cetus. He pointed out that the structure, which only pays a reward upon successfully locating the hacker, has issues. "No competent company would accept such a fee structure." ZachXBT suggested a hybrid model that combines hourly billing with success commissions to better incentivize professional teams to participate in the investigation. He also mentioned that objective factors such as the difficulty of law enforcement and the hacker's location constrain the possibility of fund recovery. Source of information: Wu Says

The article notes that on-chain detective ZachXBT has criticized the practice of offering a $5 million bounty only if it successfully helps find the hacker, arguing that this fee structure is unfair and does not incentivize people to participate. He argues that a fair compensation structure should be adopted, with both time-based and outcome-based commissions, to better motivate participants. In addition, he mentioned the possible unfairness of the bounty system, such as the poor legal environment in the location of the attacker, and the inability of law enforcement to recover all the funds after arrest.

According to Gate News bot reports, Cetus has announced a $5 million bounty program to find key information that can confirm the Hacker's identification and assist in the arrest, including name, Address, and related evidence. This operation is supported by the Sui Foundation and is in collaboration with Inca Digital. Cetus also stated that it has not yet received a response from the Hacker regarding its white hat negotiation proposal. If the Hacker chooses to cooperate and agrees to return the funds, the team will cancel accountability actions, including the bounty. The final bounty payment matters will be adjudicated by the Sui Foundation.

Gate News bot message, the Sui ecosystem DEX project Cetus has proposed a bounty of 2,324 ETH (approximately 6 million USD) to the attacker via an on-chain white hat protocol, requesting the return of the stolen funds and promising not to pursue further liability.

ChainCatcher news, Cetus announced that it has fixed the vulnerabilities from the earlier attack incident, and has collaborated with longer to track funds, label hacker Wallets, and communicate with law enforcement agencies. It has proposed a "white hat reconciliation plan" to the hacker: return assets within a specified time to receive a bounty of 2324 ETH (approximately 6 million dollars), with no accountability. The community's primary goal remains to recover the assets.

The Cetus team has confirmed the hacker's Ethereum wallet address and proposed a high bounty scheme, contingent on the return of the stolen funds to avoid legal action. The team has taken several measures to prevent fund loss, including contract locking, fund tracking, vulnerability fixes, and negotiation assistance. They are committed to continuing the recovery of funds and will release a full incident report.

The Cetus team has confirmed the Ethereum Wallet Address controlled by hackers in the latest progress on handling the attack incident and proposed a white-hat reconciliation plan. They have identified and fixed the source of the vulnerability, and are tracking funds and collaborating. The team will offer the hacker a bounty reward of 2,324 ETH, and if the remaining assets are returned within the deadline, they will not pursue legal liability. The community is currently focused on recovering the damaged assets, and a complete report will be released later.

According to ChainCatcher news reported by Cointelegraph, SUI co-founder Adeniyi announced that approximately $160 million of funds have been successfully frozen in the recent hacker attack incident involving over $220 million in the Cetus liquidity pool, and these funds will soon be returned to the Cetus liquidity pool.

Odaily Planet Daily News Slow Mist Cosine posted on the X platform that Sui's official intervention froze the $160 million in assets that had not yet escaped across the chain, and the remaining more than $60 million was distributed in two addresses, almost all of which were exchanged for ETH, a total of 23,243.

According to Gate News bot, Cointelegraph reported that Adeniyi, co-founder and chief product officer of Sui, announced that after the Cetus liquidity pool suffered a $220 million hacker attack, the team has successfully frozen approximately $160 million in funds.

Adeniyi.sui said $160 million of the $220 million stolen from Cetus has been frozen and will soon be returned to the Cetus pool. （Cointelegraph）

According to Wu's statistics, the stolen funds in the Cetus hack were distributed across four different addresses on the Sui and Ethereum chains, with a total value of $224 million.

Odaily Planet Daily News Slow Mist Cosine posted on the X platform that about $200 million was stolen from Cetus on Sui's network, and it is not easy for hackers to convert them into more stable assets and then cross over, and some traces of hackers have been obtained.

Gate News bot message, the second largest DEX platform in the Sui ecosystem, Bluefin, released a statement confirming that its platform was not affected by the Cetus hacker attack incident. As a precaution, the Bluefin team has suspended Bluefin Spot functionality, and team members are continuously monitoring the platform's operational status. Meanwhile, the Sui ecosystem DEX and token issuance platform Momentum also announced the suspension of all activities, while emphasizing that user funds are 100% secure, and is in communication with the Sui Foundation regarding follow-up measures.

Odaily News According to OnChain Lens monitoring, as of now, the Cetus Hacker has exchanged 61.47 million USDC and 1770.5 SOL for 23244 ETH, with a bid price of 2658 USD.

Golden Finance reported that Sui issued a statement regarding the Cetus security incident, stating that it will actively support the Cetus team in their ongoing investigation and will provide further updates as soon as possible.

Odaily News According to monitoring by Lookonchain, the funds stolen from Cetus have exceeded $260 million, with approximately 60 million USDC being cross-chain transferred to Ethereum to exchange for ETH.

According to analyst Ember monitoring, the price of SUI fell slightly after the hack of the CETUS DEX on SUI. James Wynn just went long on 3.3 million SUI with 10x leverage, with a position value of 13.22 million USD and an opening price of 4.01 USD.

Gate News bot reported that, according to @EmberCN's monitoring report, the SUI ecosystem decentralized exchange Cetus encountered a hacker attack, resulting in a fall in the SUI coin price. Subsequently, well-known trader James Wynn took action on the Hyperliquid platform, entering a position with a price of $4.01, using 10x leverage to go long 3.3 million SUI, with a total position of $13.22 million. Source: Wu Says

According to Golden Finance, monitoring by Yu Jin shows that CETUS on the Sui chain was attacked by a hacker, leading to a slight fall in the SUI price. Trader James Wynn just went long on 3.3 million SUI with 10x leverage, with a position value of 13.22 million USD and an entry price of 4.01 USD.