The company was trying to help those who suffered from the Radiant Capital hack
A crypto security firm, Ancilia, faced backlash after accidentally sharing a harmful link leading to a wallet-draining app. The incident occurred in the aftermath of a $52 million exploit on Radiant Capital, a lending protocol, yesterday. The hack left users scrambling to revoke wallet permissions in an effort to protect their remaining funds.
For fuck’s sake, if you are a ‘trusted’ security account, you need to absolutely make sure to never do this pic.twitter.com/2jrpN7P00L
— Spreek (@spreekaway) October 16, 2024
Ancilia’s post, intended to help Radiant Capital users secure their wallets, mistakenly included a link from a fake Radiant X account. The link directed users to a malicious app designed to drain their crypto wallets if they clicked on it and granted the necessary permissions. The error caused alarm within the crypto community, as many expected a security firm to be extra cautious with such sensitive information.
The mistake was highlighted by the pseudonymous crypto commentator Spreek, who shared a screenshot of the now-deleted post and criticized Ancilia for its mishap. Spreek urged trusted security accounts to take extra precautions to avoid such errors, emphasizing the importance of accuracy when dealing with user safety in the crypto space.
The Radiant Capital hack, which saw $51.5 million in assets including USD Coin, Wrapped BNB, and Ether stolen, involved attackers altering the protocol’s smart contracts on both the BNB Smart Chain and Arbitrum networks. According to security experts, the hackers gained control by obtaining access to private keys from three of the eleven signers of the multi-signature wallet used to secure the protocol.
Radiant Capital has acknowledged the breach and is working with several security firms to address the issue. They advised users to revoke permissions via revoke.cash, an app that helps users disconnect their wallets from compromised smart contracts. This attack marks the second major exploit Radiant has experienced this year.
