Decentralized exchange KiloEx has issued a 72-hour ultimatum to the hacker behind a recent exploit that drained approximately $7.4 million from the platform. In an unusual but increasingly common move in the decentralized finance (DeFi) space, KiloEx has offered the attacker a 10% white hat bounty for returning the remaining stolen funds — or face escalated action involving law enforcement and cybersecurity agencies.
The Exploit: Price Oracle Vulnerability
The attack, which occurred on Monday, April 15, was confirmed by the KiloEx team shortly after discovery. The team identified a vulnerability in the price oracle mechanism as the root cause of the breach. In response, KiloEx suspended operations and began collaborating with blockchain security firms and major networks including BNB Chain and Manta Network to investigate the incident.
KiloEx also urged other DeFi protocols, exchanges, and bridges to blacklist the hacker’s wallet and prevent further movement of the stolen assets.
KiloEx’s Offer to the Hacker
In a statement shared on X (formerly Twitter), KiloEx directly addressed the hacker, stating that it had gathered “critical information” with the help of law enforcement, cybersecurity agencies, and multiple bridge protocols. The platform emphasized that it is actively monitoring the attacker’s wallet addresses and warned that it is “prepared to freeze the stolen funds promptly.”
To resolve the situation without legal escalation, KiloEx extended a bounty proposal:
- Return 90% of the stolen funds
- Keep 10% as a white hat reward
- Deadline: 72 hours from April 15
If the hacker fails to respond, KiloEx vowed to escalate the matter further, sharing that the attacker’s identity and activities will be handed over to relevant authorities for potential prosecution.
“We are actively monitoring your addresses… If no resolution is reached within 72 hours, we will escalate the investigation with law enforcement and cybersecurity partners,” the team warned.
DeFi Hacks on the Rise
The KiloEx incident adds to the mounting wave of exploits targeting decentralized finance protocols. As reported by crypto.news, DeFi attacks hit a record high of $1.65 billion in Q1 2025, underscoring ongoing security challenges in the sector.
With high-value cross-chain vulnerabilities becoming a lucrative target for bad actors, platforms are now increasingly relying on public negotiations and community coordination to recover stolen funds.
Final Thoughts
KiloEx’s approach reflects a growing trend in the DeFi world: combining technical forensics, public transparency, and legal pressure in the hopes of resolving exploits without prolonged damage. Whether the hacker accepts the bounty or risks exposure remains to be seen but KiloEx has made it clear that it’s prepared to fight back.
