Sonic-based distributed finance (DEFI) protocol Credix Finance went offline after being hit by a $4.5 million exploit.
The protocol was made public less than a month later, revealing a “security breach” at 9:10 UTC on Monday. The website has been taken offline to prevent users from depositing.
Blockchain security company Certik said all the stolen funds have been bridged from Sonic to Ethereum and are currently sitting in three separate wallets.
The method of attack is unknown, but it is worth noting that multi-sig wallet violations became the most common attack vector in the first half of 2025.
“All users’ funds will be fully recovered within 24-48 hours,” Credix wrote to X, quelling concerns from investors who were unable to access the website.
Discover more from Earlybirds Invest
Subscribe to get the latest posts sent to your email.
