UXLINK Releases Full Review of Security Incident: Over $11 Million in Assets Stolen Due to External Attack

UXLINK CEO RollandSaf released a report reviewing the security incident that occurred on September 22, explaining in detail the theft of assets and emphasizing that the incident was not caused by internal factors. Attackers, by disguising as business partners and using deepfake video conferences, breached personal devices of multiple SAFE key holders over several months, stealing sensitive information such as passwords and private keys, ultimately gaining control of the old version of the arb-UXLINK smart contract. The hackers then illegally minted tokens, transferred, and sold assets, resulting in total losses exceeding $11 million.

At the time of the incident, during Korea Blockchain Week, several core team members were on-site. The team quickly reported to exchanges, cooperating security agencies, and law enforcement agencies in multiple countries, confirming that the attack was external and not internal. RollandSaf stated that the stolen assets were distributed in USDT, ETH, BTC, etc., with some assets already recovered with the assistance of exchanges for repurchase.

The report explicitly denies the speculation of an exit scam, stating that UXLINK has real income, business clients, and a global user base, maintaining transparency throughout the incident. The team has completed contract reconstruction, conducted a 1:1 recovery of the affected 479 million circulating tokens, and unlocked 12% of tokens early for compensation to users of major exchanges through governance voting. Currently, law enforcement agencies in multiple countries are investigating, and related addresses are being monitored continuously. UXLINK stated that it will continue to strengthen its security system and promote the development of AI growth, payment ecosystem FujiPay, and other businesses, emphasizing the project's stable long-term prospects and ongoing rapid growth phase.

Related Articles