Is Wintermute’s $160M exploit an inside job? This sleuth says…

ambcrypto.com:

One crypto-sleuth has claimed that the $160 million hack on algorithmic market maker Wintermute last week was an “inside job.” Needless to say, this has now sparked a brand-new crypto-conspiracy theory across crypto-circles. 

On September 20, a hacker used a flaw in a Wintermute smart contract to steal over 70 different tokens, including $61.4 million in USD Coin (USDC), $29.5 million in Tether (USDT), and 671 Wrapped Bitcoin (wBTC), which was then valued about $13 million.

Wintermute’s CEO Evgeny Gaevoy acknowledged on Twitter that its Decentralized Finance (DeFi) activities were being hampered by an “ongoing attack.” However, he added that its centralized finance and over-the-counter trading operations were untouched.

The sleuth – Librehash – claimed that the hack was carried out by an internal party because of how Wintermute’s smart contracts were interacted with and ultimately abused. He said,

“The relevant transactions initiated by the EOA [externally owned address] make it clear that the hacker was likely an internal member of the Wintermute team.”

Here, it’s worth pointing out that James Edwards, the author of the analysis, is a lesser-known cybersecurity researcher/analyst. Although neither Wintermute nor any other cybersecurity specialists are yet to respond, his research is his first publication on Medium.

According to Edwards’ assertion in the essay, the EOA “that made the call on the ‘compromised’ Wintermute smart contract was itself compromised by the team’s usage of a defective internet vanity address creation service.”

Edwards continued by claiming that the Wintermute smart contract in question does not have any “uploaded, validated code.” This makes it harder for the general public to verify the current external