Voltage Finance Exploit: Hacker Reappears, Moving Stolen Ether Through Tornado Cash

After months of silence, the hacker responsible for the 2022 Voltage Finance exploit has resurfaced, transferring a portion of the stolen Ether through the privacy-enhancing mixing service, Tornado Cash. On May 6th, blockchain security firm CertiK identified a transfer of 100 Ether (approx. $182,783) from a wallet linked to the initial breach, although on-chain analysis confirmed its origin as the same attacker who drained the DeFi platform two years ago. The exploit utilized a vulnerability in the ERC-677 token standard, allowing for reentrancy attacks and siphoning millions from Voltage Finance’s pool.