overmillion 🐐

@yenperps done

As promised I will send one Hypurr to someone who just like this tweet & follow me. This hypurr Worth 345 $HYPE Comment "done" when done.

How @purrlend @0xmil0 exploited 1,5M$ and possibly more with his previous project with the help of several large crypto companies and insiders, including @merkl_xyz @VB_Audit even mentions from @bread_ & @megaeth, alongside @0xmil0 previous project Ploutos:

I don't like to FUD competitors, and also didn't want to see Purrlend go down this way (I even reported one (different) critical security issue to them recently), but the timing of multisig txs makes this look very much like an inside job. There are 3 signers (0x731, 0xB48, 0x2Bc) on their multisig. 0x731 and 0x2Bc signed the malicious transaction. The founder claims his address wasn't involved, which leaves 0xB48 as his address. But if we look at the Safe audit log, we can see that all usual transactions (on both HypeEVM and MegaETH) are signed by 0x731 and 0xB48, with less than one minute between them (20-40 seconds on average). As someone who has significant experience coordinating high-security multisigs, I can confidently say that it's literally impossible for multiple people to sign in such a short time. Once, maybe, but not every single transaction. Especially not between the first-second signature, where the creator needs to notify other signers before they can sign. This means 0x731 and 0xB48 are almost certainly the same person. And we know 0xB48 is the founder (from his Discord message)... So, in the best-case scenario, they are lying about how many (real) signers are on the multisig. Add the multiple username changes and other shady behaviors... (signing on the attack txs also follows the same pattern, with 33 and 48 seconds between signers) The "compromised signing device sending fake data to HW" attack type also seems unlikely, considering the attack tx was at a very unusual time (3 AM CET, only tx in their multisig ever signed at CET night).

@bread_ @aave @purrlend @orchidcredit Any chance to raise funds like in KelpDAO situation to reimburse users who suffered to Purrlend exploit on MegaETH and HyperEVM?

Nothing is a straight line. Credit, in particular, is tough right now for novel solutions + assets. Wishing the Avon team the best going forward and look forward to what their next product iteration is, wherever it's deployed. Mega alts: @aave, @purrlend, @orchidcredit

@A_Leutenegger @SEAL_911 Please do, I can't dm you first

@0xovermillion @SEAL_911 Dm?

Another hack related to poor access-control. You have no excuse to not reach out to us or @SEAL_911 and learn more.

@wtfmeez @purrlend Please dm

Today’s incident is deeply unfortunate. This wasn’t something anyone anticipated. I’ve been working with @purrlend on the BD side for the past 2 months focused on partnerships, growth, and ecosystem expansion, not on smart contracts or protocol security. I’m aligned with the team in investigating what happened and maintaining transparency with the community. At this stage, it appears to be a multisig compromise, but we’re waiting for complete clarity before drawing conclusions. I’ve seen speculation around this being an insider job right now, there’s no confirmed evidence of that. It’s important we let the full investigation play out before jumping to conclusions. My priority is making sure users are kept informed and that this is handled responsibly.

@FilipAirdrop we can see the money sitting at etherscan.io/address/0x09CF… what can be done about it?

Purrlend Rugg\Exploit, all info we have gathered so far: Their Twitter account changed names 5 times: Changed X names a bunch of times: username: dmusedex last_checked: 2023-03-04 username: tinbotsnft lastchecked: 2024-01-16 username: tinsol last_checked: 2024-09-17 username: tinhype last_checked: 2025-05-11 username: purrlend last_checked: 2025-07-18 Their admin multisig (2/3, no timelock...) added the exploiter as "bridge" 8 hours ago (which was available in the old Aave version, and can mint unbacked tokens) ( @fbsloXBT ): hyperevmscan.io/tx/0x73ac9cf7c… Owners are @0xmil0, guy called Amos on Discord which I tried searching for on Twitter, didn't find him, joined Discord the same day he joined Purrlend Discord server. Third owner isn't on Discord (Words of 0xmil0). signer1: 0x2BceF069eAEA664397A28F99b0DE5D4A4f78E23E signer2: 0x7312F0b280f4Bbaa47fC6485809f1C5Cc629d7bB If you go to DeBank, they are all connected and one was funded from Binance: debank.com/profile/0x7312… Auditor is @CDSecurity_io , their site was down when this event unfolded, we have contacted him, you can see some screenshows of messages he sent us. CD Security's github: github.com/CDSecurity/aud… Here's his response (CD Security): What the owner of the protocol wanted us to do is simply compare if their contracts are 1:1 as aave v3 core. And thats the only thing we have done. It was 1:1 as it can be seen from the security report. We asked him specifically if he wants to do a full audit so we can flag even any centralisation issues, etc. but he refused that. Funds right now lay at: etherscan.io/address/0x09CF… 0xMilo message: I wasn't the only owner there are 2 others and my wallet wasn't compromised nor was it involved in this. My wallet is always in cold storage. Then it seems the signers are the other two oners, inside rug pull. @SEAL_911 and few other projects like Merkl where they were supposedly KYC'd as well. This is the company that KYC'd them: @VB_Audit github.com/VBS-Labs/KYC-V… vitalblock.org Seems they're member of some DeFi Security Alliance, didn't look too much into them yet. Only 1 person was KYC'd there.

Purrlend appears to be exploited on both MegaETH and HyperEVM. Attacker made off with: 449,683.8748 $USDC 214,125.3752 $USDT0 194,745.1368 $USDH 2.0477 $UBTC 1,581.3418 $wstHYPE 19.6052 $UETH 868.4795 $kHYPE 757.0228 $WHYPE Total: $1,197,488.33 on HyperEVM + 163,169.1587 $USDT0 36.8639 $WETH 75,745.4505 $USDm Total $324,549.49 on MegaETH. Grand total: $1,522,037.82 or $1.5M exploited. Exploiter's address: hyperevmscan.io/address/0xd801… mega.etherscan.io/address/0xd801…

Thinking that you’re not making money fast enough is the fastest way to lose all your money

@0xinternetchild @loraclexyz you short europe i guess, pair-longing something else

@loraclexyz How do I long retirement ? Seriously ? Health care stocks ?

@reisnertobias @Ramen_HL @ThatAIFreak Hey bros @ThatAIFreak I'd like to join the core hodl gang

@Ramen_HL @ThatAIFreak Let’s revive this thing

If any trustworthy HL natives want to try and revive $RUB I will send you my supply for free Happy to hand out 1% to 20 different people and let you guys try and have the first successful token on HL. I paid for the ticker and bought $300k worth of supply. It can be yours for free.

@ripdotxyz Hyperliquid

Only the true Hyperliquid familia can reply to this message

@Sychype Hyperliquid

Making something cool Comment "Hyperliquid" under this post if you want to be involved.

@Auri_0x The next Hyperliquid is... Hyperliquid

i didnt expect miracles with paradex but holy this is beyond fiasco props to paradex haters. you were so very right. closer to 0 than to my projected val. genuinely dont think anyone will ever touch the platform

@Defi_Warhol @kinetiq_xyz @tradexyz @hyenatrade @felixprotocol @hyperlendx Valantis along with Hyperbeat and Hypurrfi are A tier at least, Hybra isnt

Tier List of Hyperliquid Ecosystem Apps 🧵 S Tier: @kinetiq_xyz – Leading liquid staking protocol for HYPE @tradexyz – The largest HIP3 perp DEX by volume @hyenatrade – HIP3 perp DEX @felixprotocol – Borrow/lend & HIP3 protocol @hyperlendx – Leading lending/borrowing money market built A Tier: @HybraFinance – Liquidity coordination and incentive layer @silhouette_ex – Privacy-focused trading interface @liquidtrading – Multi-venue trading terminal and aggregator B Tier: @ventuals – Synthetic markets to long/short pre-IPO companies @hyperbeat – All-in-one DeFi superapp around HYPE @HypurrFi – Trading and DeFi hub @Looped_HYPE – Auto-looping for maximizing HYPE
yield @liminalmoney – Delta-neutral funding yield protocol C Tier: @Hyperwavefi – Liquid HLP wrapper capturing vault yield @ValantisLabs – Modular AMM and liquid staking infrastructure
@Dreamcash – Mobile-first Hyperliquid trading app @harmonixfi – Automated structured yield vaults D Tier: @Dexari – Native trading interface for mobile @sentimentxyz – Leveraged lending with isolated risk pools @pvp_dot_trade – Telegram PvP trading bot Did I miss anything? Hope you enjoyed this post and found some new VALUABLE information. If you wanna support me, I'd appreciate a like, reply, and RT <3

@_imhamzah @sonicthehedgor What protocol is that

@sonicthehedgor commenting for better reach !

earning almost 20% on stables. why aren't more people farming this?

@onchainmonk @ready_co @hyperbeat

Any good and useful crypto cards for Himalayan monk? Legit one.