What to Know
Today, blockchain security firm PeckShield raised an alert after two wallets were hacked, leading to a loss of around $2.3 million in USDT.
According to reports, wallets 0x1209…e9C and 0xaac6…508 were compromised after a private key leak. The attacker quickly moved the stolen USDT to a malicious wallet and then swapped it for Ethereum. The hacker converted the funds into 757.6 ETH and later sent the money through Tornado Cash.
PeckShield’s alert system detected a series of suspicious transactions linked to the private key leak attack. Wallet 0xaac6…508 transferred around $1.8 million, while wallet 0x1209…e9C sent roughly $506,000. Both transfers went to the same malicious address, 0x530…, which was controlled by the attacker.
Once the funds were gathered, the hacker wasted no time in swapping USDT for ETH. This step is often done to make tracking harder. After that, the ETH was moved through Tornado Cash, making it even more difficult to trace where the money finally ends up. While the affected wallet owners have not been publicly identified, the incident adds to a growing list of private key-related attacks seen in recent weeks.
Just a few days earlier, on December 20, another major crypto loss was reported by CertiK. In that case, a victim lost nearly $50 million due to a phishing attack known as address poisoning.
The attacker copied the look of a real wallet address by matching its starting and ending characters. After the victim made a small test transfer of 50 USDT, the phisher sent a fake transfer record with the same amount. This trick convinced the victim they were sending funds to the correct address, but they ended up transferring 49,999,950 USDT to a fake one instead.
Even earlier, on December 18, PeckShield reported another large attack where a whale’s multi-signature wallet was drained of around $27.3 million due to a private key compromise. Part of those funds was also laundered through Tornado Cash.
Incidents like the private key leaks hurt more than just the victims. They shake confidence in the crypto space as a whole. New users may feel scared to enter the market, and existing users may reduce how much they hold or use on-chain services.
For companies and projects building in crypto, repeated hacks create a trust problem. Users start questioning whether platforms are safe, even when the issue is caused by individual wallet mistakes. Over time, this slows adoption and invites more scrutiny from regulators.
While crypto offers full control over money, that freedom comes with responsibility. Here are a few simple steps users can take to stay safer:
For businesses, the stakes are even higher. One mistake can cost millions. Companies should:
As crypto adoption grows, so does the interest of attackers. These recent hacks are a reminder that security is not optional; users must follow strict protocols to avoid private key leaks. Staying alert, using proper tools, and following basic safety practices can go a long way in protecting both individual users and the wider crypto ecosystem.
