A year ago, a hacker exploited CremaFinance’s Solana flash-loan smart contract for $9M which he then converted to ETH and XMR.
Today, the U.S. DOJ announced the capture in New York of the hacker who left enough breadcrumbs to get caught despite using TornadoCash to launder the proceeds of the hack.
The hacker is a NYC-based “senior security engineer at an international technology company” with expertise in blockchain and smart contract security audits. Looking up his name returns a senior security engineer working at Amazon in NYC. He is facing up to two 20-year sentences.
Oh, and he was arrested by Homeland Security special agent Chad.