$29M SUI Token Theft: Tornado Cash Used in Exploit
Blockchain investigator ZachXBT recently uncovered a significant security breach involving the theft of $29 million worth of SUI tokens. This incident, which occurred in December 2024, underscores the ongoing risks within the blockchain ecosystem.
Attackers Leverage Tornado Cash to Launder Stolen Funds
On January 26th, ZachXBT detailed how an attacker successfully stole 6.27 million SUI tokens from a major holder on the Sui network. These tokens were then moved from the Sui blockchain to Ethereum via bridging tools and subsequently laundered through Tornado Cash, a privacy-enhancing tool often associated with illicit activities. The use of Tornado Cash helped to obscure the trail of the stolen funds.
Limited Sui Network Traceability
While the victim swiftly secured their remaining .sui domain holdings, tracing the stolen SUI tokens has proven challenging. ZachXBT noted limitations in the current Sui network analytics and explorer tools, hindering investigative efforts. This lack of robust tracking capabilities is a significant concern.
“The victim transferred their .sui domains to a new uncompromised address shortly after the theft. Current limitations with Sui block explorers and Sui analytics tools make the theft difficult to trace,” ZachXBT stated.
This incident follows other recent high-profile blockchain exploits, such as the reported incident involving Phemex, further emphasizing the need for enhanced security measures across the industry.
Sui Network: Growth and Security Concerns
Launched in 2023, the Sui blockchain has rapidly gained popularity as a Layer-1 network for decentralized applications (dApps). Its features, including the Move programming language and parallel transaction processing, have contributed to its significant growth. However, this growth also makes it a more attractive target for malicious actors.
At the time of writing, Sui boasts a market capitalization of $12 billion and over 50 million registered accounts, placing it among the top cryptocurrencies. This success, however, highlights the need for ongoing efforts to improve security.
Despite the challenges posed by this recent exploit, Sui maintains its commitment to developing its ecosystem. The network aims to expand its reach in various sectors such as AI, gaming, and fintech, leveraging its impressive transaction speeds.
“In 2025 we’re going way beyond ‘faster finality.’ We’re designing a future where Sui becomes the backbone for finance, gaming, AI-driven agents, and everyday apps,” said Adeniyi Abiodun, Sui co-founder.
Codeum's Services: Codeum offers comprehensive blockchain security solutions, including smart contract audits, KYC verification, custom smart contract development, tokenomics consulting, and partnerships with launchpads and agencies. Our services aim to help projects mitigate risks and build secure, trustworthy blockchain applications.