Hacker Funnels Illicit RocketSwap Gains Through DEX and CEX

• Hacker stole $865,000 from RocketSwap using various techniques.
• Stolen funds were laundered through ETH and transferred to different platforms.
• RocketSwap faced backlash for disabling communication and criticized for poor security measures.

The Ethereum address linked to the hacker behind the recent $865,000 theft of funds from decentralized exchange (DEX) RocketSwap has moved the stolen assets through various laundering techniques, according to blockchain tracker PeckShieldAlert.

On August 14, RocketSwap was compromised when private keys were brute-forced, enabling the creation of memecoin LoveRCKT and the transfer of proceeds to Uniswap. The incident was initially believed to potentially be a rug-pull scam by developers.

Following the hack, PeckShieldAlert reported that 169 ETH was laundered through the privacy protocol TornadoCash. Additional amounts were bridged to layer-2 networks Arbitrum and Binance Smart Chain.

Over 347 BNB and 34 ETH were then deposited on the major centralized exchanges, Binance and OKX. Smaller amounts were swapped for TIP tokens and sent to exchange MEXC.

The tracking of the stolen funds by PeckShieldAlert illustrates how DEX hacks can quickly disperse assets across layer-1s, layer-2s, decentralized platforms, and centralized venues in an effort to obscure the money trail.

RocketSwap is still working to recover from the security breach and prevent future attacks. However, the hacker has shown their ability to utilize a matrix of services to wash and cash out proceeds. The incident highlights the ongoing challenges posed by DEX vulnerabilities and sophisticated laundering tactics.

Moreover, comments on X (Twitter) and Telegram were turned off by the project. Following the exploit, the team received substantial community backlash for disabling communication. The compromise occurred when RocketSwap placed private keys on a server, which was widely criticized due to its poor security measures.