"Wormhole token bridge loses $321M"; "Jump Crypto Just Counter-Exploited the Wormhole Hacker for $140 Million"

Why are these hackers always left their funds un-laundered? Can't they just do an atomic swap to XMR or use tornado cash? But in the end, it's still a huge lost for them. What I learnt:

1. centralized protocols/chains dev teams has complete control over the protocol. And teams between chains can cooperate to change the protocol without notifying the public, even professional hackers can't see this coming.

Whether or not the dev teams should do it is up to debate, but it certainly raise concerns about the teams integrity.

2. But if the contract is unmodified, or your action is fast. There's nothing the dev team can do. For average user, there should be some easy auditing tools to let the user know if the contract/protocol has been changed.

3. Cross-chain is really really dangerous, so so so much hacking events. That why I am always for one giant ecosystem surrounding one chain. (Cosmos/Atom still belong to this definition)

https://blockworks.co/news/jump-crypto-wormhole-hack-recovery

https://cointelegraph.com/news/wormhole-token-bridge-loses-321m-in-largest-hack-so-far-in-2022

#ETH #Bridge #Protocol #CrossChain #Hack #CounterHack #trustless #integrity