2026-01-21 06:25:53

Paradex officially announced that its partner Mithril trading robot was recently hacked. The attacker successfully obtained sub-keys for approximately 57 users. It should be noted that sub-keys are a restricted type of key that can be used to proxy trading operations, but strictly speaking, cannot be used for fund withdrawals, which limits the scope of damage.

Upon learning of the incident, Paradex quickly activated its emergency response mechanism. They immediately suspended all XP transfers and revoked all sub-keys associated with Mithril trading accounts. It is important to note that only users who actively connected to the Mithril trading robot are affected; other users' accounts remain completely unaffected.

Additionally, regarding the network outage on January 19, Paradex has completed a comprehensive review of the affected accounts. During that incident, some users experienced erroneous liquidations (mainly related to PAXG), and Paradex has now compensated these users. The total compensation amount reached $650,000, distributed across 200 accounts. Meanwhile, the deposit and withdrawal functions of Gigavault have also been restored to normal. For other pending tickets, the platform promises to review and process them one by one in the coming days.

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

16 Likes

Reward
16
5
Repost
Share

Comment

0/400

SchrodingersFOMO

· 2h ago

Impressed with Paradex's response speed, at least they didn't pass the buck.

View OriginalReply0

Web3Educator

· 01-21 07:16

ngl the subkey architecture design here is lowkey genius—fundamentally speaking, permission-scoped keys are exactly what my students kept asking about in last month's bootcamp. limited damage surface = better protocol design, as i always tell people

Reply0

LiquidatedThrice

· 01-21 06:56

Another security incident occurred. Fortunately, the sub-keys couldn't be withdrawn this time, or it would have been a bloodbath.

View OriginalReply0

ShibaSunglasses

· 01-21 06:55

Fortunately, it's just a sub-key; otherwise, it would really be over.

View OriginalReply0

AllTalkLongTrader

· 01-21 06:55

Uh, something went wrong again. Paradex still shows some responsibility this time. --- The sub-key being stolen is just okay, at least it can't be withdrawn, better than a direct liquidation. --- Compensating 650,000 to 200 people, averaging over 3,000 each. This deal is pretty good. --- Mithril users should reflect on this. They dare to authorize APIs casually. --- Now confidence is gone again, and I have to wait and see for a few days. --- Fortunately, I didn't connect to that broken robot. Rest assured, I will go long. --- I feel the platform's handling this time was acceptable, at least they didn't pass the buck. --- It's again a sub-key issue. Learned my lesson.

View OriginalReply0