Share this article
Defrost Finance Says Hacked Funds Have Been Returned
The hack, which some observers had characterized as a rug pull, was estimated to have netted $12 million.
Updated May 9, 2023, 4:05 a.m. Published Dec 26, 2022, 3:20 p.m.
Defrost Finance, which on Sunday said its V1 and V2 products had been exploited, said the hacker in the larger V1 attack has returned the funds.
"We will soon start scanning the data on-chain to find out who owned what prior to the hack in order to return them to the rightful owners. As different users had variable proportions of assets and debt, this process might take a little [time]," the decentralized-finance protocol said in a post linked on its website.
STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
The hacked funds have been returned to #DefrostFinance.
— Defrost Finance 🔺 (@Defrost_Finance) December 26, 2022
The affected users will very soon be able to claim their assets back.
Details 👇https://t.co/RpDqKAK44y
In a tweet thread posted on Sunday, the team said a first attack used a flash loan to drain funds out of its V2 product. A second larger attack used the owner key to exploit V1. The protocol, which offers leveraged trading on the Avalanche blockchain, didn’t say how much had been taken.
Blockchain security firm PeckShield, citing “community intel,” said at the time that the exploit may have been a rug pull that made off with $12 million. Earlier Monday Certik, also a security company, said it had been unable to contact members of the team and posted a graphic indicating it was treating Defrost as an exit scam. Defrost's Twitter account isn't configured to accept private messages.
A rug pull, or exit scam, can occur when developers create and establish a liquidity pool and then remove the funds and disappear after investors have bought the related token. Usually, the team behind the scheme goes silent and can't be contacted. Defrost Finance, however, announced the attack and said in a tweet that it was willing to negotiate with the people responsible for a return of the funds.
See also: Crypto Adds Unsavory Footnote to Dreadful 2022: Year of the Rug Pull
More For You
What to know:
- As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
- GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
- Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
More For You
Turkey's Paribu Buys CoinMENA in $240M Deal, Expanding Into High-Growth Crypto Markets
With the acquisition, Paribu gains regulatory foothold in Bahrain and Dubai and access to the region's fast-growing crypto user base.
What to know:
- Paribu acquires Bahrain- and Dubai-based CoinMENA for up to $240 million.
- Deal marks Turkey’s biggest fintech acquisition and first international crypto M&A, the firm said.
- The move taps into the MENA region’s fast-growing crypto user base and supportive regulatory hubs.
Top Stories
