Radiant Capital published a post reviewing the theft process, stating that it will identify the attacker as soon as possible and recover the stolen f

Radiant Capital officials posted on social media to review a highly complex security vulnerability experienced by the protocol on the 16th, resulting in a loss of $50 million. Attackers injected and exploited multiple developers' hardware wallets with highly advanced malware.During the intrusion, the front-end of Safe Wallet (also known as Gnosis Safe) displayed legitimate transaction data, while the poisoned transactions were signed and executed in the background. This vulnerability occurred during a routine multi-signature emission adjustment process, which is periodically conducted to adapt to market conditions and utilization. DAO contributors strictly adhered to many industry-standard operating procedures throughout the entire process. Each transaction was simulated on Tenderly to ensure accuracy and independently reviewed by multiple developers at each signature stage. During these reviews, no abnormalities were detected by the front-end checks in Tenderly and Safe. To emphasize the importance of this point, external security teams have confirmed that this compromise was completely undetectable during the manual review of Gnosis Safe UI and regular transaction Tenderly simulation stages.Radiant Capital stated that it has been working closely with Seal911 and Hypernative and has implemented more robust multi-signature controls. The FBI and zeroShadow are fully aware of the violations and are actively working to freeze all stolen assets. The DAO is deeply affected by this attack and will continue to work tirelessly with relevant agencies to identify the attackers and recover stolen funds as soon as possible.