Skip to main content

The hacker who stole and gave back $600M has been offered a job and reward from the company he stole from

The hacker who stole and gave back $600M has been offered a job and reward from the company he stole from
The crypto thief is being offered the role of Chief Security Advisor and a $500,000 reward. (Image credit: Andreas Schlegel/Getty Images)

Last week, over $600M in cryptocurrency was stolen in an elaborate digital heist when a hacker exploited a vulnerability in Poly Network, a platform used to make cryptocurrency transactions across different blockchains. If that wasn't a wild enough story, the hacker later returned nearly all of the stolen currency after the illegal transactions were flagged (which made the money nearly impossible to convert to US dollars anyway).

Your next upgrade

(Image credit: Future)

Best CPU for gaming: the top chips from Intel and AMD
Best graphics card: your perfect pixel-pusher awaits
Best SSD for gaming: get into the game ahead of the rest

In yet another bizarre twist to this story, Poly Network announced today in a Medium post that it has maintained daily contact with the hacker referred to as Mr White Hat. Poly Network claims that the hacker shared his concerns about "Poly Network’s security and overall development strategy" in the post.  

Poly Network then offered Mr. White Hat a job as Chief Security Advisor of Poly Network. It's not uncommon for hackers to make living testing out the digital defense of large companies for a fee. The idea is: Who better to run your security than the person who robbed you?  

See more

"We are also counting on more experts like Mr. White Hat to be involved in the future development of Poly Network since we believe that we share the vision to build a secure and robust distributed system," the company wrote. "Also, to extend our thanks and encourage Mr. White Hat to continue contributing to security advancement in the blockchain world together with Poly Network, we cordially invite Mr. White Hat to be the Chief Security Advisor of Poly Network."

Poly Network also promised Mr. White Hat a $500,000 bug bounty for discovering the exploit that resulted in the massive theft, although the hacker initially turned it down. Poly Network still sent him the $500K for him to do as he pleases. The company also stated that it is not holding Mr. White Hat legally responsible because it's "confident that Mr. White Hat will promptly return full control of the assets to Poly Network and its users."

Though his name is Mr. White Hat, some users have found it hard to believe that the theft was an unexpected security test and not simply a messy heist that both sides are now trying to recover from.  

And if you're still keeping count, as of Friday, $340M was returned along with $238M to a multi-signature wallet with a remainder of $33M that's currently waiting to be unfrozen. Poly Network also took this moment to turn lemons into lemonade and announce the launch of a bug bounty program. Discovering vulnerabilities on their platform can score you up to $100,000. 

Jorge Jimenez

Jorge is a hardware writer from the enchanted lands of New Jersey. When he's not filling the office with the smell of Pop-Tarts, he's reviewing all sorts of gaming hardware from headsets to game pads. He's been covering games and tech for nearly ten years and has written for Dualshockers, WCCFtech, and Tom's Guide.