Connect Wallet

White hat returns $190K to Renegade hours after hacking the protocol

EcoPool Network > Blog > App > News > White hat returns $190K to Renegade hours after hacking the protocol
3 young DeFi apps return $100M in revenue to token holders in 30 days img3
Spread the love
         

Written by Brayden Lindrea⁠, Staff Writer. Reviewed by Felix Ng⁠, Staff Editor.

Written by Brayden Lindrea⁠, Staff Writer.

Reviewed by Felix Ng⁠, Staff Editor.

White hat returns $190K to Renegade hours after hacking the protocol

Latest NewsPublishedMay 11, 2026

The white hat hacker stated the decision to exploit Renegade’s dark pool was made to protect the funds and safety of DeFi users.

The team behind the Renegade.fi protocol stated a whitehat hacker returned about $190,000 after exploiting one of its Arbitrum-based decentralized dark pools and later complying with instructions in an onchain message to return 90% of the funds.

Renegade verified the return of funds on Sunday after blockchain analytics platform Blockaid flagged the $209,000 exploit at 8:27 am UTC. The hacker injected malicious logic into a faulty function tied to its V1 Arbitrum dark pool to steal 27 ERC-20 tokens.

Data from Arbitrum block explorer Arbiscan shows that the whitehat returned about $190,000 to the Arbitrum wallet address “0xE4A…5CFBE,” which includes $84,370 worth of USDC (USDC), $27,885 in wrapped Bitcoin and $23,950 in wrapped Ether.

Source: Renegade

White hat hackers have come to play a crucial role in the fight against exploiters who continue to exploit crypto protocols despite strengthened security measures in recent years. 

Industry initiatives like the crypto security nonprofit Security Alliance’s Safe Harbor framework have been set up to enable white hats to steal funds for temporary safekeeping while being legally protected.

In an onchain message, Renegade asked the hacker to return 90% of the funds and keep the remaining 10% as a “whitehat bounty” to avoid facing potential “civil or criminal action.”

The onchain message that Renegade sent to the hacker. Source: Arbiscan

The white hat hacker sent more than 90% of the stolen funds back within 45 minutes and stated in response to the onchain message that the action was taken to protect DeFi users: 

“I’ve seen a lot of contempt toward my actions. Although I understand that what I did was not ethical, in the current DeFi cybersecurity, I believe this was the best solution to protect users’ funds and ensure their safety.”

The white hat hacker also hinted that Renegade should tighten up its security measures, stating that the vulnerability exploited was “tooooo simple and bad.”

Related: Crypto hackers stole $17B over past 10 years: DefiLlama 

North Korean state-backed hackers “would never come to negotiate,” they added.

Renegade stated the exploit appeared to have resulted from the deployment code failing to assign an explicit owner and from a faulty migration in an April 2025 software update, enabling anyone to rewrite the smart contract tied to its V1 Arbitrum dark pool.

Dark pools are private trading platforms that allow large trades to occur without exposing their intentions to, or impacting, the broader market. 

Renegade added that it would publish a post-mortem with a “full root-cause analysis” explaining the security incident.

Renegade stated it would fully compensate affected users, and that only 7% of its trading volume was channeled through the V1 Arbitrum dark pool and that it would contact the “small number of affected users directly.”

Magazine: AI-driven hacks could kill DeFi — unless projects act now

Cointelegraph is committed to independent, transparent journalism. This news article is produced in accordance with Cointelegraph’s Editorial Policy and aims to provide accurate and timely information. Readers are encouraged to verify information independently.

  • Hacks
  • DeFi
  • Cybersecurity
  • Blockchain

More on the subject

SUI spikes 50% amid staking moves, zero-fee stablecoins, privacy push


17 hours ago

Stephen Katte

3 young DeFi apps return $100M in revenue to token holders in 30 days


May 10, 2026

Amin Haqshanas

The Nobitex dilemma: How Iran’s biggest crypto exchange stays off the OFAC blacklist


May 9, 2026

Artem G

SUI spikes 50% amid staking moves, zero-fee stablecoins, privacy push


17 hours ago

Stephen Katte

3 young DeFi apps return $100M in revenue to token holders in 30 days


May 10, 2026

Amin Haqshanas

The Nobitex dilemma: How Iran’s biggest crypto exchange stays off the OFAC blacklist


May 9, 2026

Artem G



💡 A Greener Way to Earn: Looking for a smarter, more sustainable way to earn and mining crypto? EcoPool Network is a cloud-based mining pool that does the heavy lifting on remote servers — so you earn rewards around the clock without worrying about overheating hardware or sky-high electricity bills. It’s lightweight, battery-friendly, and built for everyday users. Download EcoPool now and start mining & earning smarter today.

Spread the love
         
Leave a Comment on White hat returns $190K to Renegade hours after hacking the protocolApp, Currency, Market, News
Tags , , , , , , ,

About the Author

Leo Rivers

Leave a Reply

Your email address will not be published. Required fields are marked *

You may also like these

We believe crypto mining should be accessible and sustainable for everyone. Ecopool is designed to help you maximize your earnings while supporting greener blockchain technology

Useful Links

Our Community

Contact Us

  • Global Operations Center,
  • Dubai, UAE
  • info@ecopool.network
Facebook X-twitter Youtube Instagram Whatsapp Linkedin Telegram

Copyright © 2026 EcoPool.

Help & FAQs

Terms Of Use

Privacy Policy