Hacker Mints Additional 1 Billion UXLINK Tokens in On-Chain Exploit
A multi-signature wallet vulnerability led to the theft of $11.3 million in crypto assets, followed by a phishing scam that further compromised the hacker's gains, highlighting weaknesses in UXLINK's security management.
Summary
On September 23, 2025, UXLINK lost $11.3 million after a private key leak in its multi-signature wallet allowed attackers to bypass security and steal assets. The hacker later fell victim to an InfernoDrainer phishing scam, losing 542 million $UXLINK tokens. The breach exposes significant flaws in UXLINK’s multisig management and calls for improved key security.
Terms & Concepts
- Multisignature Wallet: A type of wallet that requires multiple private keys to approve transactions, offering an additional layer of security against unauthorized access.
- Private Key Leak: The accidental exposure or theft of a private key, which can allow unauthorized users to access and control crypto assets.
- InfernoDrainer Phishing Scam: A type of phishing attack where the victim is tricked into disclosing sensitive information, leading to the loss of assets.