{"id":24588,"date":"2025-06-09T12:42:07","date_gmt":"2025-06-09T09:42:07","guid":{"rendered":"https:\/\/forklog.com\/en\/alex-lab-to-compensate-losses-following-8-3-million-hack\/"},"modified":"2025-06-09T12:42:07","modified_gmt":"2025-06-09T09:42:07","slug":"alex-lab-to-compensate-losses-following-8-3-million-hack","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/alex-lab-to-compensate-losses-following-8-3-million-hack\/","title":{"rendered":"ALEX Lab to Compensate Losses Following $8.3 Million Hack"},"content":{"rendered":"<p>The DeFi protocol ALEX Lab, built on the Bitcoin Layer 2 solution Stacks, will fully compensate users for losses incurred from a hacking attack amounting to $8.3 million.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">On June 6, 2025, ALEX Protocol was exploited via a flaw in the self-listing verification logic (an on-chain limitation on Stacks). As a result, the attacker drained several asset pools, with the breakdown of lost assets as follows:<\/p>\n<p>STX: 8,403,867.57 STX \u2192 $ 5,691,255.93 <br \/>sBTC:\u2026<\/p>\n<p>\u2014 ALEX ? No. 1 Bitcoin DeFi (@ALEXLabBTC) <a href=\"https:\/\/twitter.com\/ALEXLabBTC\/status\/1931014419133169734?ref_src=twsrc%5Etfw\">June 6, 2025<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>According to the team\u2019s statement, on June 6, an attacker exploited a vulnerability in the smart contract verification logic. They managed to add a malicious token by referencing a previously failed transaction. This allowed them to bypass checks and withdraw funds from liquidity pools.<\/p>\n<p>Project representatives stated that the main issue lies in the current limitations of the Stacks network, which do not allow for reliable tracking of failed transactions.<\/p>\n<p>To compensate for the losses, the ALEX Lab team will use funds from its own treasury. Affected users will receive individual notifications. To claim compensation, applications must be submitted by June 10.<\/p>\n<p>The recent attack marks the second major breach of the protocol in recent years \u2014 in May 2024, the project <a href=\"https:\/\/forklog.com\/en\/news\/alex-labs-defi-protocol-loses-4-3-million-in-hack\">lost<\/a> $4.3 million due to the compromise of private keys in a phishing attack.<\/p>\n<p>The compensation process following the first incident <a href=\"https:\/\/medium.com\/alexgobtc\/newsletter-2-7b-71bbfc5bb609\">is still ongoing<\/a>. The team managed to persuade centralized exchanges to freeze some of the stolen assets. According to the latest data, eight out of 15 platforms have returned the funds, with negotiations continuing with the rest.<\/p>\n<p>At the time of writing, the native ALEX token is trading at $0.017, having plummeted 17% in 24 hours, according to <a href=\"https:\/\/www.coingecko.com\/en\/coins\/alex-lab\">CoinGecko<\/a>.<\/p>\n<p>Earlier in May, funds amounting to $11.5 million were <a href=\"https:\/\/forklog.com\/en\/news\/hackers-extract-14-5-million-from-nervos-network-and-bitopro-platforms\">withdrawn<\/a> from the hot wallet of Taiwan&#8217;s BitoPro.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The DeFi protocol ALEX Lab, built on the Bitcoin Layer 2 solution Stacks, will fully compensate users for losses incurred from a hacking attack amounting to $8.3 million. On June 6, 2025, ALEX Protocol was exploited via a flaw in the self-listing verification logic (an on-chain limitation on Stacks). As a result, the attacker drained [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":24587,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1301,44,1093],"class_list":["post-24588","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-blockchain-vulnerabilities","tag-cybercrime","tag-defi"],"aioseo_notices":[],"amp_enabled":true,"views":"69","promo_type":"","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/24588","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=24588"}],"version-history":[{"count":0,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/24588\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/24587"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=24588"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=24588"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=24588"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}