Key Takeaways:
- Cetus is offering a $6M bounty for the return of $56M in ETH stolen during a $223M exploit.
- Sui validators froze addresses linked to the hack, pausing $162M in compromised tokens.
- The incident sparked criticism over Sui’s centralization as token values, including CETUS, crashed.
Cetus Protocol, a decentralized exchange built on the Sui blockchain , is facing a challenging crisis. Earlier this week, the platform was exploited , leading to a staggering $223 million loss, of which around 20,920 ETH, valued at approximately $56.3 million , was stolen. In response to this alarming situation, Cetus is taking a proactive approach by offering a $6 million bounty to the hacker for the return of the stolen assets.
Cetus Reaches Out to Hacker
In a late-night announcement on X, Cetus revealed that it had identified the Ethereum wallet utilized in the attack and reached out to negotiate with the hacker. The message emphasized that the hacker could keep 2,324 ETH (approximately $6 million ) as a bounty if they agreed to return the remainder of the stolen funds. The message, co-signed by data analytics firm Inca Digital , warned that robust legal and intelligence operations would be activated if the attacker attempted to off-ramp or mix the stolen assets.
The breach occurred due to a vulnerability in Cetus’ smart contracts linked to its liquidity pool . The attacker drained millions in cryptocurrency, manipulating the assets to swiftly swap them into USDC before converting to ETH . Fortunately, Cetus has reported that the vulnerability has now been patched , and the platform is undergoing a thorough investigation to prevent similar incidents in the future.
In solidarity with Cetus, the Sui Network , which serves as the underlying blockchain for the protocol, coordinated with validators to freeze addresses associated with the stolen funds. The Sui Foundation announced that many validators identified the compromised addresses and are currently ignoring transactions on those addresses until further notice. As a precaution, approximately $162 million worth of compromised tokens have been paused to mitigate further losses.
While Cetus expressed gratitude for the collaboration with DeFi protocols and other stakeholders within the Sui ecosystem, the incident sparked concerns about the centralization of the Sui network. Questions arose regarding the network’s governance, with notable critic Justin Bons , founder of Cyber Capital , highlighting the fact that the validators’ ability to censor transactions indicates a centralized approach. The network’s token supply concentration and validator count remain major points of contention.
As a result of the exploit, Cetus’ native token, CETUS , plummeted by 50% , currently trading at $0.1714 according to CoinGecko . Other tokens affiliated with the protocol, such as LOFI and HIPPO , likewise experienced significant losses.
Crypto Lost $1.6 Billion to Hacks in Q1
This unfortunate event is part of a broader trend in the cryptocurrency landscape. The first quarter of 2025 saw a staggering loss of $1,635,933,800 across 39 incidents , particularly attributed to two significant attacks on centralized exchanges. Phemex suffered a loss of $69.1 million in January, while Bybit was hit far worse, losing $1.46 billion in February.
The total losses for the first quarter marked a 4.7x increase compared to Q1 2024, when hackers and fraudsters stole around $348,251,217 . Alarmingly, experts speculate that the notorious North Korean Lazarus Group is behind the two most catastrophic attacks, accounting for $1.52 billion or 94% of total losses.
The situation surrounding Cetus highlights the vulnerabilities that exist within the cryptocurrency ecosystem and the urgent need for enhanced security protocols and governance structures. As discussions about the centralization vs. decentralization debate continue to unfold, it’s clear that the industry must adapt and innovate to secure the trust of its users and investors.


Dear Sui community, thank you for your patience while our team works on the incident investigation and resolution.
(@CetusProtocol)