{"id":72961,"date":"2025-09-09T11:24:48","date_gmt":"2025-09-09T08:24:48","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=72961"},"modified":"2025-09-09T11:25:16","modified_gmt":"2025-09-09T08:25:16","slug":"hackers-breach-swissborg-crypto-platform-steal-40-million","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/hackers-breach-swissborg-crypto-platform-steal-40-million\/","title":{"rendered":"Hackers Breach SwissBorg Crypto Platform, Steal $40 Million"},"content":{"rendered":"<p>On September 8, unknown individuals stole 192,600 SOL valued at $41 million from the Swiss crypto platform SwissBorg. The incident was first <a href=\"https:\/\/t.me\/investigations\/272\">reported<\/a> by on-chain detective ZachXBT. <\/p>\n<p>Investigations revealed that the breach targeted the SOL Earn product through the platform&#8217;s partner, Kiln. The project provides staking infrastructure for Solana and Ethereum.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">SOL Earn Incident &#038; SwissBorg Recovery Plan<\/p>\n<p>A partner API was compromised, impacting our SOL Earn Program (~193k SOL, <1% of users).<br \/>\ud83d\udc49 Rest assured, the SwissBorg app remains fully secure and all other funds in Earn programs are 100% safe.<\/p>\n<p>Our recovery plan.<br \/>Immediate Actions\u2026<\/p>\n<p>\u2014 SwissBorg (@swissborg) <a href=\"https:\/\/twitter.com\/swissborg\/status\/1965123506477359471?ref_src=twsrc%5Etfw\">September 8, 2025<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>According to SwissBorg representatives, the incident affected less than 1% of the platform&#8217;s clients. The management presented a compensation plan and promised to reimburse all user losses. <\/p>\n<p>The Swiss project team emphasized that the breach did not affect the main application or other Earn programs. <\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cSwissBorg remains in good financial standing; this incident has not impacted daily operations,\u201d the statement read. <\/p>\n<\/blockquote>\n<h2 class=\"wp-block-heading\">A Productive Start to the Week for Hackers <\/h2>\n<p>On the same day, PeckShield specialists reported a breach of the DeFi platform Nemo based on Sui. Hackers stole USDC worth $2.4 million. <\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\"><a href=\"https:\/\/twitter.com\/hashtag\/PeckShieldAlert?src=hash&#038;ref_src=twsrc%5Etfw\">#PeckShieldAlert<\/a> <a href=\"https:\/\/twitter.com\/nemoprotocol?ref_src=twsrc%5Etfw\">@nemoprotocol<\/a> on <a href=\"https:\/\/twitter.com\/SuiNetwork?ref_src=twsrc%5Etfw\">@SuiNetwork<\/a> has been exploited for $2.4M<\/p>\n<p>The hacker bridged <a href=\"https:\/\/twitter.com\/search?q=%24USDC&#038;src=ctag&#038;ref_src=twsrc%5Etfw\">$USDC<\/a> via Circle from Arbitrum to Ethereum. <a href=\"https:\/\/t.co\/QSB0ec7TZy\">pic.twitter.com\/QSB0ec7TZy<\/a><\/p>\n<p>\u2014 PeckShieldAlert (@PeckShieldAlert) <a href=\"https:\/\/twitter.com\/PeckShieldAlert\/status\/1964936862566592938?ref_src=twsrc%5Etfw\">September 8, 2025<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Analysts added that by the time the attack was discovered, the perpetrator had already transferred the stolen stablecoins from Arbitrum to Ethereum.<\/p>\n<p>According to the Nemo team, the incident affected the protocol&#8217;s liquidity pool. Developers temporarily suspended all smart contract activities and promised to share additional information \u201cas soon as it becomes available.\u201d <\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Nemo experienced a security incident occurred last night, impacting the Market pool.<\/p>\n<p>We are investigating the matter and have suspended all smart contract activity for the time being. We plan to share when more information becomes available. All Vault assets remain untouched.\u2026<\/p>\n<p>\u2014 Nemo (@nemoprotocol) <a href=\"https:\/\/twitter.com\/nemoprotocol\/status\/1964996522052911603?ref_src=twsrc%5Etfw\">September 8, 2025<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>All assets in the vaults are secure, the protocol representatives stated. The cause of the breach remains unknown. <\/p>\n<p>Previously, attackers <a href=\"https:\/\/forklog.com\/en\/news\/hackers-target-javascript-ecosystem-to-hijack-crypto-wallets\">injected<\/a> malicious code to drain cryptocurrency wallets through the JavaScript ecosystem.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>On September 8, unknown individuals stole 192,600 SOL valued at $41 million from SwissBorg.<\/p>\n","protected":false},"author":1,"featured_media":72962,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"Simultaneously, PeckShield reported a breach of the DeFi platform Nemo.","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[44,1093,1159,1651,910],"class_list":["post-72961","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybercrime","tag-defi","tag-solana-sol","tag-sui-sui","tag-usdc"],"aioseo_notices":[],"amp_enabled":true,"views":"706","promo_type":"1","layout_type":"1","short_excerpt":"Simultaneously, PeckShield reported a breach of the DeFi platform Nemo.","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/72961","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=72961"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/72961\/revisions"}],"predecessor-version":[{"id":72963,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/72961\/revisions\/72963"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/72962"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=72961"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=72961"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=72961"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}