Infini, a provider of encrypted financial card services, recently faced a major cybersecurity crisis, with approximately $49.5 million in funds stolen from its Ethereum address, shocking the cryptocurrency community. Infini co-founder Christine quickly stepped forward to reassure users, promising full compensation, and stated that the engineer involved has been identified and reported to the authorities.
Table of Contents
ToggleCertiK Report: $49.5 Million in Funds Abnormally Transferred
According to a report by the on-chain security team CertiK, a suspicious fund transfer occurred from an unverified 0x9A79 Ethereum address on the Infini platform. A compromised account (0xc49b) granted special permissions to another 0x8e9b address, allowing it to withdraw all the funds from that address.
We have seen suspicious transfers of funds from unverified contracts on Ethereum 0x9A79f4105A4e1A050Ba0b42F25351D394fA7E1DC
The receiver 0x3ac96134fb0e42a52d33045aee50b89790f05ed0 took ~$49.5M and is swapping them for Dai
Stay Vigilant! pic.twitter.com/MVXyn4fM9o
— CertiK Alert (@CertiKAlert) February 24, 2025
CertiK has called on relevant users to remain vigilant, as this appears to be a well-planned attack:
The attackers successfully transferred approximately $49.5 million and quickly converted the funds into 17,696 ETH (around $47 million) and the stablecoin Dai.
Infini Official Response: Full Compensation
In response, Infini co-founder Christine posted on the X platform, assuring users that the company will bear all losses:
Still reviewing and tracking the details, withdrawals are normal, in the worst case, full compensation will be made, you can rest assured.
— Christian (Building @0xinfini) (@Christianeth) February 24, 2025
The team is currently reviewing and tracking the incident in detail, and user withdrawal functionality is operating normally. Even in the worst-case scenario, Infini will provide full compensation.
She also revealed that the engineer involved has been identified and tracked, and the company has reported the incident to the relevant authorities, emphasizing that "Infini will be fine." Christine promised to continue updating on the progress to stabilize user confidence and regain market trust.
Yu Yan Admits: Attackers Have Sophisticated Techniques, Tracking in Progress
Chain data analyst Yu Yan also responded to Christine's tweet, stating that he has fully followed up on the case and believes the attackers "are quite technically proficient," consistent with CertiK's investigation findings.
This incident once again highlights the cybersecurity risks in encrypted financial services. The $49.5 million loss is undoubtedly a significant blow to Infini's reputation, and how the company addresses this crisis will serve as an important reference for the stablecoin and fintech startup sectors.
Risk Warning
Cryptocurrency investments carry a high degree of risk, and their prices may fluctuate dramatically. You may lose your entire principal. Please carefully evaluate the risks.
