CrediXFinance

CrediX Finance team vanishes after $4.5M hack as exit scam suspected following broken fund recovery promises and deleted social media accounts.
The team behind decentralized finance (DeFi) protocol CrediX Finance appears to have vanished following a $4.5 million exploit that drained funds from the platform, sparking widespread suspicions of an exit scam.

In an August 8 alert, blockchain security firm CertiK reported that CrediX Finance’s official X account went silent, while its website has remained offline since Monday, when the exploit first occurred.
The hack unfolded dramatically when attackers gained administrative control of the project’s multisig wallet on August 4, exploiting bridge privileges to mint unbacked collateral tokens.
On August 5, in what is now a deleted X post, CrediX Finance reassured the community that it had successfully negotiated with the exploiter to return the stolen funds within two days in exchange for payment from the protocol’s treasury.
CrediX immediately took its website offline to prevent additional user deposits while instructing existing users to withdraw funds directly through smart contracts.
The company also pledged to reimburse users for lost funds through an airdrop distribution.
Speaking with Cryptonews, Circuit CEO Harry Donnelly criticized negotiation-based recovery methods, noting they are frequently employed as exit scam strategies.
He emphasized that “automated threat response should be standard to ensure assets are kept out of harm’s way, rather than hoping to bargain with bad actors.”
More than two days have elapsed since the promise, and the company has maintained radio silence, deleting all official accounts and leaving users without recourse or communication.
Affected users have begun exploring fund recovery options through legal channels.
According to a Stability DAO Discord post shared by Sonic Maxi, there have been ongoing preparations for a formal legal report.
The Stability DAO team confirmed contact with affected organizations, including Sonic Labs, Euler, Beets, and Trevee (formerly Rings Protocol). These entities plan to collaborate with authorities in recovery efforts.
An on-chain analyst and co-founder of Sonic MementorBot expressed sympathy for CrediX victims while criticizing their trust in unrealistically high APR promises from lending vaults.
“Metavaults are always risky. Exploiter sent funds to Tornado instead of returning,” the analyst observed.
The multi-chain yield-bearing protocol Trevee also joined to reveal that the CrediX hack indirectly impacted its operations through a $1.6 million scUSD loan to Stability’s metaUSD, which became fully exposed to CrediX following a bank run.
Similar to other users attracted by high APY and favorable borrowing rates, Trevee believed metaUSD was secure due to its associated 87% loan-to-value (LTV) ratio.
The team reported reducing its exposure to over $700,000 but expressed frustration that “the Credix team has since deleted their accounts, abandoning the project and denying all responsibility.”
Trevee promised to develop fund recovery plans addressing the shortfall and committed to updating affected users promptly.
CrediX operated as a lending protocol employing an innovative credit scoring model designed for emerging markets, specializing in projects utilizing stablecoin payment platforms.
#scam
#CrediXFinance
#CryptoNewss

As of August 6, 2025, the hacker who stole $4.5 million from the decentralized protocol CrediX Finance has agreed to return the funds in exchange for a reward. The attack occurred less than a month after the platform, which operates on the Sonic network, was launched. The perpetrator exploited a vulnerability in multi-signature wallets, gaining control over the bridge and withdrawing assets through a series of loan manipulations. The CrediX team stated that they reached an agreement with the hacker, and the funds will be returned within 24-48 hours, without further legal action.