A developer known as Florent has pulled off a whitehat exploit that freed 1,003 ETH — worth roughly $2 million — from a smart contract that had been locking investor funds since a 2016 ICO. The rescue marks nearly nine years of inaccessible capital finally returning to its original owners.
The operation is a textbook whitehat recovery: Florent identified a vulnerability in the legacy contract and used it to extract funds on behalf of the original investors rather than for personal gain. Those investors can now reclaim their ETH after almost a decade of it sitting unreachable on-chain.
The episode highlights both the durability of Ethereum's immutable ledger — the funds were always there, provably — and the ongoing importance of skilled security researchers willing to work in the public interest. For the broader ICO-era cohort of stranded contracts, it's a reminder that not all locked funds are permanently lost.
WuBlockchain
TheBlock