The protocol confirms a negotiated return of stolen funds amid emergent multisig wallet vulnerabilities and evolving DeFi exploit recovery practices in 2025.
CrediX announced that the hacker behind the $4.5M exploit agreed to return the funds within 24-48 hours following successful negotiations. The attacker will be compensated fully by the treasury while affected users receive airdrops. The incident followed a six-day compromise where attackers exploited multisig wallet and bridge privileges on the Sonic network, draining $2.64M from lending pools, marking a growing trend in negotiated recoveries amid widespread DeFi vulnerabilities in 2025.