Makina recovers majority of funds from exploit as whitehat process returns 920 ETH

ambcryptoPublished on 2026-01-22Last updated on 2026-01-22

Abstract

Makina has recovered the majority of funds from a 20 January exploit, with approximately 920 ETH returned through the SEAL Whitehat Safe Harbor program. The MEV builder involved received a 10% bounty. The total exploit amounted to around 1,299 ETH, with 920 ETH representing the bulk of the funds initially received by the builder. Recovery efforts continue for the remaining 276 ETH sent to a Rocket Pool validator. The exploit only affected the USDC side of Makina’s DUSD/USDC Curve pool, impacting liquidity providers but not other users. The incident highlights the role of whitehat frameworks and coordinated responses in mitigating DeFi losses, though it remains one of the larger exploits in early 2026.

Makina has recovered a majority of funds linked to its 20 January exploit, marking one of the more substantial DeFi recovery efforts seen so far in 2026.

920 ETH returned under whitehat framework

In an update shared on 22 January, Makina confirmed that approximately 920 ETH has been returned by an MEV builder involved in the exploit, net of a 10% bounty awarded under the SEAL Whitehat Safe Harbor programme.

The returned amount represents the majority of the 1,023 ETH initially received by the MEV builder, and a significant portion of the ~1,299 ETH total exploit tied to the DUSD/USDC Curve pool incident on 20 January.

On-chain data shows the recovered funds were transferred to a dedicated recovery multisig, established to manage restitution and next steps.

Recovery remains incomplete

While the recovery marks meaningful progress, Makina said efforts are ongoing to retrieve the remaining funds.

Roughly 276 ETH linked to the exploit was sent to an address identified as a Rocket Pool validator.

The team stated that it is actively working to establish contact and has requested assistance from the community in identifying the entity associated with the address.

Makina added that details on distribution methods and timelines for recovered funds will be shared once practical, noting that the process remains active.

Makina exploit recap

As previously reported, the exploit affected only the USDC side of Makina’s DUSD/USDC Curve pool and was isolated to liquidity providers.

Users holding DUSD, Pendle, or Gearbox positions, as well as funds within Makina’s Machines, were not impacted.

Security tooling flagged suspicious activity shortly before the exploit, which was ultimately executed by a second address identified as an MEV bot.

Makina’s Security Council triggered recovery mode in coordination with SEAL911 and external auditors to prevent further losses.

Early 2026 exploit trend remains intact

The recovery does not materially alter the broader pattern observed in early 2026, where a small number of protocol-level exploits account for the majority of losses.

Makina’s incident remains among the larger DeFi exploits recorded this year, alongside cases such as Truebit and YO Protocol.

However, the partial recovery highlights the growing role of whitehat frameworks and coordinated response mechanisms in limiting long-term damage.

Final Thoughts

  • Makina’s recovery of roughly 920 ETH demonstrates how whitehat processes can materially reduce losses, even in high-impact DeFi exploits.
  • While recovery efforts continue, the incident reinforces that exploit risk in 2026 remains concentrated in a handful of protocol failures rather than systemic breakdowns.

Related Questions

QWhat is the total amount of ETH recovered by Makina through the whitehat process, and what percentage bounty was awarded?

AMakina recovered 920 ETH through the whitehat process, net of a 10% bounty awarded under the SEAL Whitehat Safe Harbor programme.

QWhich specific pool was affected by the exploit on January 20th, and what type of users were impacted?

AThe exploit affected the DUSD/USDC Curve pool, and the impact was isolated to liquidity providers on the USDC side.

QHow much ETH from the exploit was sent to a Rocket Pool validator, and what is the current status of recovering those funds?

AApproximately 276 ETH from the exploit was sent to a Rocket Pool validator. The team is actively working to establish contact and has requested community assistance in identifying the entity.

QWhat broader trend in DeFi exploits does the Makina incident exemplify for early 2026?

AThe incident exemplifies the trend where a small number of protocol-level exploits account for the majority of losses, rather than systemic breakdowns.

QWhat role did the MEV builder play in the exploit and subsequent recovery?

AAn MEV builder was involved in executing the exploit, initially receiving 1,023 ETH, and later returned the majority of it (920 ETH) under the whitehat framework.

Related Reads

Trump's 43 Minutes: The Strongman Narrative Unravels, the Media War Escalates

President Donald Trump's first public appearance in over a week, intended to project control amidst health concerns and political challenges, devolved into a 43-minute display of grievance and insecurity. He focused initially on a reflecting pool renovation, compared his rally size to Martin Luther King Jr.'s, and repeatedly attacked political opponents, judges, and U.S. cities. He signed executive orders, including one weakening job protections for senior federal employees, potentially replacing expertise with loyalty. His speech meandered to topics like communism before ending abruptly. The article highlights Trump's agitated, defensive state and the systemic pressures enabling his power. It details his personal attack on a CNN reporter, framing it as part of a broader assault on independent media to undermine public trust in unfavorable facts. This pressure is exemplified by the reported erosion of editorial independence at CBS. The author argues that as mainstream media faces political and commercial pressures, supporting independent journalists becomes crucial for preserving truthful information. The piece concludes by noting a symbolic House vote challenging Trump's Iran actions, suggesting growing Republican dissent, and frames financial support for independent media as a direct form of resistance.

marsbit3h ago

Trump's 43 Minutes: The Strongman Narrative Unravels, the Media War Escalates

marsbit3h ago

The Ambitions of Kalshi, MTS, and a16z

"Kalshi, MTS, and a16z's Ambition" explores prediction markets as a focal point for investors in 2025. The article traces their intellectual evolution from Hayek's ideas on distributed knowledge to Robin Hanson's logarithmic market scoring rule (LMSR), which incentivizes truth-telling. Venture firm Andreessen Horowitz (a16z) invested in prediction market platform Kalshi, valuing it at $220 billion. a16z argues these markets offer "presence"—a way for individuals to actively engage with and influence world events through financial bets, countering modern detachment. This transforms participants into "super observers" and grants the platform authority in defining event truth and importance. The piece positions prediction markets as a key component of a16z's envisioned "new media" empire. This strategy involves rapid, high-intensity content across platforms to "take over the timeline." Media company MTS exemplifies this with its constant news livestreams. Ultimately, Kalshi's value lies in its "reality distortion field"—the power to shape perception through the credibility of real-money markets, making it a potent tool within a16z's broader media and influence architecture.

marsbit5h ago

The Ambitions of Kalshi, MTS, and a16z

marsbit5h ago

Breaking: OpenAI Chip Veteran Joins Anthropic

Breaking News: OpenAI Chip Veteran Joins Anthropic Clive Chan, a key early member of OpenAI's in-house chip development team, has announced his departure from OpenAI to join rival AI company Anthropic. In his statement, Chan highlighted his experience as the second hire on OpenAI's hardware team, praising its exceptional talent density but expressing a desire to "climb a new mountain from the base." He cited Anthropic's talent, values, and ambitious pace as key reasons for his move. Chan also referenced OpenAI's disclosed partnership with Broadcom, aimed at deploying a 10GW AI accelerator system starting in the second half of 2026. His career includes roles at Tesla, Google, and SpaceX, focusing on AI infrastructure and hardware. This move continues a notable trend of talent flow from OpenAI to Anthropic, following other high-profile departures like researcher Andrej Karpathy. With Anthropic's recent $65 billion funding round valuing it near $1 trillion, the competition for top AI talent between these leading firms remains intense.

marsbit5h ago

Breaking: OpenAI Chip Veteran Joins Anthropic

marsbit5h ago

a16z's Globalization Shift: Venture Capital Is Becoming the 'Driving Force' for the U.S. Tech Alliance

a16z is making a significant shift in its globalization strategy, positioning itself not just as a global investor but as a key player in aligning technology with the national security and competitive interests of the United States and its allies. The firm’s recent initiatives, including opening a Tokyo office and appointing Anne Neuberger—a former U.S. government official with deep experience in defense and technology—as Global Affairs Lead, underscore this move. It highlights how venture capital’s role is expanding beyond funding and advice to helping startups navigate complex international regulations, geopolitics, and strategic partnerships in critical sectors like AI, cybersecurity, defense tech, and supply chain resilience. By rebranding its investor relations team as the Global Partnership Team and leveraging its extensive network to connect founders with global capital and key stakeholders, a16z aims to be a "behind-the-scenes force" for scaling companies internationally. The firm has already made over 100 international investments. Ultimately, a16z frames its mission as twofold: empowering founders to build great companies and, now, actively supporting the technological leadership and alliance networks of the U.S. and its allies in an era of heightened global competition.

marsbit5h ago

a16z's Globalization Shift: Venture Capital Is Becoming the 'Driving Force' for the U.S. Tech Alliance

marsbit5h ago

Uncovering the Truth About Agent Commerce, Payments, and Infrastructure

Decoding Agent Commerce, Payments, and Infrastructure: The Reality Over the past year, I've been building infrastructure for the Agent economy, engaging with major players like Stripe, Visa, Coinbase, Google, and dozens of startups. A clear conclusion emerges: true, large-scale demand does not yet exist. Startups face structural challenges. Data points illustrate this gap. Stripe's Agent commerce platform has over 1,000 merchants but only single-digit transacting agents. Visa's Agent payment token requires 9-month KYC and a $250M revenue threshold, accessible only to giants like Amazon. On-chain analysis reveals actual daily Agent transaction volume is around $17k, half of which are test transactions. The article analyzes four potential markets: **1. Agent-to-Merchant (A2M):** Current AI shopping UX is often inferior to traditional e-commerce for visual, comparison-heavy purchases (clothing, electronics). Chat interfaces are a step back. Real merchant interest is defensive "Agent Engine Optimization," fearing future obsolescence, not current demand. Potential exists in high-frequency, low-decision purchases (e.g., food delivery) or simplifying terrible UX (complex checkouts, non-native shoppers), but these require massive consumer distribution channels dominated by giants like DoorDash and Amazon. **2. Agent-to-API (A2A):** Developers already have subscriptions and billing for core APIs (compute, data). The argument for micro-payments via crypto for sub-dollar API calls is addressed by pre-paid balances today. The deeper issue is supplier resistance; major SaaS firms rely on enterprise contracts, not fractional cent pricing. Opportunity lies in the long tail of niche services, but this is a smaller market catering to developers, a historically low-paying group. **3. Agent-to-Agent (A2A):** This remains a theoretical long-term vision with near-zero current transaction volume. It involves unique challenges: discovery, trust, negotiation, dispute resolution. When it materializes, it will require a fundamentally new settlement infrastructure for high-speed, variable-value, multi-party transactions. It's a real long-term bet, but not the current market. **4. Agent-to-Finance (A2F):** This is the only category with existing, paying demand. Integrating AI into financial workflows (trading, portfolio management) is a natural evolution and enables new capabilities like autonomous rebalancing. However, competition favors incumbents with regulatory licenses, compliance infrastructure, and existing client relationships. **The Real Issue:** Why is infrastructure still being built? Incumbents can afford long-term bets, and payment companies see every problem as a nail for their payment hammer. However, payment is just one piece. The core challenge is *coordination*—orchestrating work between Agents and humans, verifying outcomes, and settling results. Payment is part of settlement, which is part of coordination. Companies that solve the coordination problem will subsume payments, not the other way around. Startups lack the infinite runway of giants and must find today's real market, which, after a year of exploration, lies outside these four categories—in an area with real, growing, and underserved activity.

marsbit5h ago

Uncovering the Truth About Agent Commerce, Payments, and Infrastructure

marsbit5h ago

Trading

Spot
Futures

Hot Articles

Discussions

Welcome to the HTX Community. Here, you can stay informed about the latest platform developments and gain access to professional market insights. Users' opinions on the price of ETH (ETH) are presented below.

活动图片

Top Questions