- The Normie memecoin team is negotiating with a hacker to recover 90% of stolen funds after a significant market cap drop.
- The hacker exploited a vulnerability in the contract tax mechanism, causing a flash loan attack.
- The team accepted the hacker’s terms to use the returned assets and additional funds to launch a new token for compensating holders.
Normie memecoin team negotiates with hacker to recover 90% of stolen funds after a $41.7 million market cap drop.
NORMIE Hit by Flash Loan Attack, Team Negotiates Return of Stolen Funds
On May 26, a flash loan attack targeted the $NORMIE memecoin project on Base blockchain, exploiting a vulnerability in its contract tax mechanism. This breach enabled the attacker to borrow a large amount of cryptocurrency without collateral, manipulate the token supply, and repay the loan within the same transaction.
The instantaneous nature of blockchain transactions facilitated the attack, causing a rapid increase in NORMIE’s token supply. Consequently, the token’s price plummeted by over 99%, reducing its market value from $40 million to under $200,000.
Early this morning, the Normie project team announced that the hacker had contacted them and agreed to return 90% of the stolen funds. Despite this agreement, NORMIE’s price had dropped by 96% since the exploit. Blockchain analytics firm Lookonchain identified the exploit and the hacker’s offer through an on-chain message to Normie’s deployer address.
The Normie team accepted the hacker’s terms to recover the funds, which involved using the returned assets and $2.3 million from their development wallet to launch a new token for compensating NORMIE holders. In an official statement, the team addressed the hacker:
“Exploiter, we accept your offer to return 90% of the exploited $ETH. You may keep 10%, no reprisals.”
Following this announcement, the team’s primary account on X (formerly Twitter) was suspended. The team then communicated via a new account on X, announcing a relaunch planned after regaining access to their main account and securing the returned funds. However, this temporary account was also suspended shortly thereafter.
The hacker reiterated the conditions, emphasizing that the token relaunch must precede the return of funds:
“The dev wallet made significantly more than I did during this exploit, and I have no other way to ensure that those funds are used appropriately.”
NORMIE Holders Express Concerns Amid Silence from Project Post-Hack
Some cryptocurrency users on X (formerly Twitter) have expressed concerns regarding the NORMIE team’s silence following the suspension of their X handles. One user reported that the NORMIE team had “blocked messages on Telegram“ and had “very little information” about their plans. Several users speculated whether the hack could have been an “insider job.”
NORMIE was launched amid a surge in memecoin popularity on the Base blockchain in March 2024, reaching a peak market cap of $130 million on April 2, according to CoinGecko. The token’s price declined at 3:55 am UTC on May 26, plunging over 92% to $0.0032 within an hour.
The price further dropped by 99.5% after two and a half hours, with a brief spike to $0.019 before continuing its downward trend to $0.0016 at the time of writing, marking a 96% fall. The market cap, which fell from $41.9 million to a low of $200,000, has slightly recovered since then.
According to the on-chain scam detection tool Quick Intel, 72,000 NORMIE holders were affected by the exploit. Quick Intel mentioned that the vulnerability had been detected in March, although it is unclear how much the token’s holders lost in the incident. The NORMIE team has yet to confirm the number of affected users.
They urged affected token holders to register for a snapshot to receive compensation:
“If you were affected in the latest exploit you may now register for the snapshot. We will be taking on entries until the end of May. Everyone who was a holder and registered will be airdropped on the new contract.”
Conclusion
The Normie memecoin team is taking significant steps to recover from a devastating flash loan attack that drastically reduced its market cap. By negotiating with the hacker and planning a new token launch to compensate affected holders, the team aims to restore trust and stability within its community. However, the incident underscores the importance of robust security measures in the rapidly evolving cryptocurrency landscape.