Crypto Hack Hit Binance Smart Chain: Certik tracks $2 million exploits

Table of Contents

$140 million was lost in May alone – Certik reports that Crypto Hacks and Scams surged, causing phishing attacks to raise $8.5 million in damages.

BSC Exploit Drains $2 million – The attacker abused printmoney() via a compromised contract, converting the funds into BNB and Stablecoins.

Rising phishing, wallet hacks and security violations are creating panic in the encryption space. Recently, blockchain security company Certik revealed that in May alone, about $140.1 million was lost in crypto hacks, fraud and exploits, and $162 million in assets were frozen. In particular, phishing attacks accounted for around $8.5 million in total losses.

Certik Alert has flagged a massive exploit on Binance Smart Chain (BSC). There, the attackers ran out nearly $2 million by abusing a smart contract feature called PrintMoney().

Exploiter steals funds using certification agreements

#certikinsight🚨
A suspicious TXN was detected at known exploit address 0xD5C6F3B71BCCEB2FEF8332BD8225F5F39 with known exploit address 0xD5C6F3B71BCCEB22BD8225F5F39.
Stay…pic.twitter.com/ynklecd5le
– certik alert (@certikalert) June 25, 2025

The exploit was performed by a known attacker working from address 0xD5C6F3…122C. Individuals repeatedly triggered the printmoney() function on an approved attack contract. Unauthorized access results from a compromised victim contract linked to address 0xB5CB0, which unconsciously approved the malicious contract about 8 hours before the attack.

Certik believes that the private key of the victim’s contract deployer may have been adopted or breached, leading to fraudulent approval transactions. This gave the attacker full permission to transfer the victim’s token.

The attacker has converted funds and has held nearly $2 million

2/Attackers are quickly redeeming the stolen derivative tokens from BNB and stable, currently holding ~$1,962,330 at 0xD5C6F3B71BCCEB2EF8332BD82225F5F39E56A1222. pic.twitter.com/d7mspbuagy
– certik alert (@certikalert) June 25, 2025

Once access was secured, the attacker quickly converted the stolen derived tokens into BNB and Stablecoins. Currently, Exploiter holds approximately $1.96 million worth of assets at its address.

urged the community to stay vigilant

This year, Coinbase lost $400 million, SUI network Cetus hit with $220 million, and others like Phemex and UPCX have suffered huge losses. These incidents show how cryptography can be dangerous if you don’t take caution. According to Certik, one of the biggest mistakes is trusting unverified smart contracts or having weak private key security. That’s exactly what happened in recent BSC hacks. The attackers were able to steal millions because the victims’ contracts were not properly secured.

Certik is currently tracking hackers’ wallets and keeping an eye on suspicious activities. We also reminded users and developers to always check agreement approvals, use audited code, and avoid rushing to transactions.

Certik’s advice, on the other hand, be careful, pay attention, and don’t rush anything.