CETUS（基於SUI的DEX）反映Crema Finance的黑客和賞金策略

賞金提出的提議要收回基於SUI的分散交易所（DEX）CETU非常類似於Solana使用的成功策略

The bounty offer to recover stolen funds from Sui-based decentralized exchange (DEX) Cetus closely resembles a successful strategy used by a Solana project three years ago.

賞金提出的旨在收回基於SUI的分散交易所（DEX）CETU的偷竊資金與三年前Solana項目使用的成功策略非常相似。

It turns out that Cetus shares the same development team with Crema Finance, a Solana-based DeFi project that suffered a $9-million hack in 2022 but recovered most of the funds by negotiating with its hacker. Now, Cetus is relying on the same strategy.

事實證明，Cetus與Crema Finance分享了相同的開發團隊，Crema Finance是一個基於Solana的Defi項目，在2022年遭受了900萬美元的黑客攻擊，但通過與黑客談判通過談判獲得了大部分資金。現在，Cetus依靠相同的策略。

Cetus is asking the hacker to return all but $6 million, or 2,324 Ether (ETH), of the stolen funds in exchange for a promise not to pursue legal action. The protocol lost $223 million to an exploit on May 22.

Cetus要求黑客退還被盜資金的600萬美元（ETH）（ETH）以外的所有資金，以換取不採取法律訴訟的承諾。該協議於5月22日損失了2.23億美元。

The size of the bounty has sparked backlash from users, with many calling for a formal compensation plan instead. Several community members argue that even if funds are recovered, most of the damage has already been done — especially to holders of the CETUS token, which plummeted in value following the incident.

賞金的大小引起了用戶的反對，許多人要求制定正式的薪酬計劃。幾個社區成員認為，即使收回了資金，大多數損害已經造成，尤其是對於Cetus代幣的持有者，事件發生後的價值下降了。

Meanwhile, Sui validators are also under fire for their role in freezing the funds. The move is aimed at aiding recovery, yet critics say it exposes centralization risks in the network.

同時，SUI驗證者在凍結資金中的作用也受到了抨擊。此舉旨在幫助恢復，但批評家表示，它暴露了網絡中的集中化風險。

Sui’s Cetus devs have a phantom exchange on Solana

Sui的Cetus開發人員對Solana進行了幻影交流

A similar negotiation strategy used by the Cetus team on Sui was successfully employed years ago to recover funds for Crema. The Solana project hasn’t posted on its X account since March 2023, and its trading platform now sees negligible volume, but it still didn’t end well for the hacker.

幾年前，CETUS團隊在SUI上使用的類似的談判策略已成功地為CREMA收回資金。自2023年3月以來，Solana Project一直沒有在其X帳戶上發布，其交易平台現在認為數量微不足道，但對於黑客來說，它的結局仍然不錯。

Crema suffered an approximately $9-million hack in 2022. Much like the Cetus case, the Crema hacker was offered a deal to return the funds while keeping $1.6 million in exchange for not reporting the attack to law enforcement.

克雷馬（Crema）在2022年遭受了約900萬美元的黑客攻擊。與Cetus案一樣，Crema Hacker獲得了一筆交易來退還資金的協議，同時保留160萬美元，以換取不向執法部門報告襲擊的情況。

The hacker is believed to have been caught and sent to prison. In April 2024, the US Attorney’s Office for the Southern District of New York sentenced Shakeeb Ahmed to three years in prison for hacking two separate cryptocurrency exchanges. One was identified as Nirvana Finance, while the other was not named.

據信該黑客被捕並被送入監獄。 2024年4月，紐約南部地區的美國檢察官辦公室因黑客攻擊了兩次單獨的加密貨幣交易所而判處Shakeeb Ahmed入獄三年。一個被確定為Nirvana Finance，而另一個則沒有命名。

The details of the unnamed exchange’s case match Crema’s hack, including the exact date of the exploit and the terms of the agreement.

未透露姓名的案件的詳細信息匹配了Crema的黑客攻擊，包括剝削的確切日期和協議條款。

Norbert Bodziony, founder of Nightly App, claims the Cetus team was behind Crema Finance.

Nightly App的創始人Norbert Bodziony聲稱CETUS團隊是Crema Finance的支持。

Bodziony declined to disclose how he learned of the relationship to Cointelegraph but added that the connection is “commonly known” in Sui’s developer circles.

Bodziony拒絕透露他如何了解與Cointelegraph的關係，但補充說，這種聯繫在Sui的開發人員圈子中是“眾所周知的”。

Cointelegraph reached out to Cetus to confirm the connection between the two projects, but the team had not responded by publication.

Cointelegraph與CETUS聯繫以確認兩個項目之間的聯繫，但團隊沒有通過出版物做出回應。

Cointelegraph has separately learned that both projects are founded by Henry Du.

Cointelegraph已單獨了解到，這兩個項目都是由亨利·杜（Henry Du）建立的。

Save Cetus; centralize Sui

保存cetus;集中sui

Sui’s validators have collectively blocked transactions from the hacker’s addresses, effectively freezing $162 million of the stolen funds on Sui. Around $63 million had already been bridged to Ethereum before these controls were implemented.

SUI的驗證者已從黑客的地址中統一阻止了交易，有效地凍結了Sui的盜竊資金中的1.62億美元。在實施這些控件之前，已經將約6300萬美元橋接到以太坊。

Although the coordinated effort has been effective in preventing the funds from being laundered, the cryptocurrency community has criticized Sui for being too centralized.

儘管協調的努力在防止資金被洗錢方面有效，但加密貨幣社區批評Sui太集中了。

“SUI’s validators are colluding to CENSOR the hacker’s TXs right now! Does that make SUI centralized? The short answer is YES; what matters more is why? The ‘founders’ own the majority of supply & there are only 114 validators!” Justin Bons, founder of Cyber Capital, wrote on X.

“ Sui的驗證者現在正在核算黑客的TXS！這使SUI集中了嗎？簡短的答案是肯定的；更重要的是，為什麼？“創始人”擁有大部分供應，只有114個驗證者！”網絡資本的創始人賈斯汀·邦斯（Justin Bons）在X上寫道。

As Bons pointed out, Sui has just 114 validators — far fewer than its more established smart contract peers. Ethereum has over 1 million validators, while Solana has 1,157.

正如Bons指出的那樣，Sui只有114個驗證者，遠遠少於其既定的智能合同同行。以太坊擁有超過100萬個驗證器，而Solana有1,157。

Meanwhile, members of the Sui community defended the move, arguing that this is how real-world decentralized chains should function.

同時，SUI社區的成員為此舉辯護，認為這就是現實世界的分散鏈應該運作的方式。

“Decentralization isn’t about standing by while people get hurt, it’s about the power to act together, without needing permission,” said one member of the Sui community.

SUI社區的一位成員說：“權力下放並不是要在人們受到傷害時站立，而是在不需要許可的情況下共同行動的權力。”

Following the hack, Sui developers committed code for a proposed function that would have allowed specific transactions to bypass all signing and safety checks by adding them to a whitelist.

在黑客之後，SUI開發人員為提出的功能提供了代碼，該功能將允許特定的交易通過將其添加到白名單中來繞過所有簽名和安全檢查。

While the function could have been used to help recover stolen funds, it also raised concerns about centralized control and the erosion of decentralization. The code was ultimately not merged and is not live on the network.

雖然該功能本來可以用來幫助恢復被盜資金，但它也引起了人們對集中控制和權力下放侵蝕的擔憂。該代碼最終沒有合併，並且不在網絡上。

Sui and Cetus backlash contrasts recent hacks

SUI和CETUS反彈對比了最近的黑客

The Cetus exploit has spotlighted the persistent security challenges in DeFi while raising deeper questions about who holds the reins in supposedly decentralized networks like Sui.

CETUS漏洞利用了DEFI的持續安全挑戰，同時提出了關於誰在SUI等分散的網絡中掌權的更深入的疑問。

The team’s $6-million offer to the hacker mirrors the playbook it used with Crema — but this time, the crypto community isn’t as forgiving. With CETUS tanking, trust fractured and validators freezing funds, critics are asking whether Sui’s decentralization is more appearance than reality.

該團隊向黑客提供的600萬美元報價反映了與Crema一起使用的劇本，但是這次，加密社區並不那麼寬容。鑑於Cetus坦克，信任破裂和驗證者凍結了資金，批評者正在詢問Sui的權力下放是否比現實更多。

The debate over decentralization isn’t unique to Sui. When Bybit lost

關於權力下放的辯論並不是SUI獨有的。當拜百比輸掉時