The attacker has withdrawn 864.8 ETH (~ $3.09 million) from a non-fungible token (NFT) auction on the IDO platform MISO of the SushiSwap protocol.
SushiSwap CTO Joseph DeLonge has reported that an anonymous attacker under the nickname AristoK3 on GitHub injected malicious code into the MISO frontend and changed the auction address.
At around 7:00 p.m. ET, the funds were transferred to a wallet controlled by the hacker, which has now been flagged by Etherscan as linked to the MISO hack.
According to DeLonge, the platform team believes the attacker is known on Twitter as 0x A.K. The user describes himself as a blockchain and web developer.
DeLonge has warned the hacker was also doing work for yearn.Finance’s DeFi project.
MISO specialists have asked FTX and Binance for information about the identity of the attacker, however, their request wast not accepted. If the funds are not returned by 14:00 (CET) on September 17, they will contact the FBI.