Hacks

Private Key Leak Drains $2.3M USDT as Hacker Swaps Funds to ETH

Written By

Swatilakha Saha

December 23, 2025

Private Key Leak Drains $2.3M USDT as Hacker Swaps Funds to ETH, Launders via Tornado Cash

What to Know

Two wallets were hacked due to a private key leak, leading to a loss of about $2.3M in USDT.

The attacker swapped the stolen funds to ETH and hid the trail using Tornado Cash.

Recent hacks show rising security risks and the need for stronger wallet protection.

Today, blockchain security firm PeckShield raised an alert after two wallets were hacked, leading to a loss of around $2.3 million in USDT.

According to reports, wallets 0x1209…e9C and 0xaac6…508 were compromised after a private key leak. The attacker quickly moved the stolen USDT to a malicious wallet and then swapped it for Ethereum. The hacker converted the funds into 757.6 ETH and later sent the money through Tornado Cash.

How the Private Key Leak Led to a Hack

PeckShield’s alert system detected a series of suspicious transactions linked to the private key leak attack. Wallet 0xaac6…508 transferred around $1.8 million, while wallet 0x1209…e9C sent roughly $506,000. Both transfers went to the same malicious address, 0x530…, which was controlled by the attacker.

Once the funds were gathered, the hacker wasted no time in swapping USDT for ETH. This step is often done to make tracking harder. After that, the ETH was moved through Tornado Cash, making it even more difficult to trace where the money finally ends up. While the affected wallet owners have not been publicly identified, the incident adds to a growing list of private key-related attacks seen in recent weeks.

Not an Isolated Incident

Just a few days earlier, on December 20, another major crypto loss was reported by CertiK. In that case, a victim lost nearly $50 million due to a phishing attack known as address poisoning.

#CertiKInsight 🚨

We have seen a ~$50M phishing victim due to address poisoning.

The phisher trailed the victim’s test transfer of 50 USDT with a false transfer log of the same amount of fake USDT to a false address with the same initial and ending characters as the legitimate… pic.twitter.com/69hKXLjTWT

— CertiK Alert (@CertiKAlert) December 20, 2025

The attacker copied the look of a real wallet address by matching its starting and ending characters. After the victim made a small test transfer of 50 USDT, the phisher sent a fake transfer record with the same amount. This trick convinced the victim they were sending funds to the correct address, but they ended up transferring 49,999,950 USDT to a fake one instead.

Even earlier, on December 18, PeckShield reported another large attack where a whale’s multi-signature wallet was drained of around $27.3 million due to a private key compromise. Part of those funds was also laundered through Tornado Cash.

How These Hacks Affect Trust

Incidents like the private key leaks hurt more than just the victims. They shake confidence in the crypto space as a whole. New users may feel scared to enter the market, and existing users may reduce how much they hold or use on-chain services.

For companies and projects building in crypto, repeated hacks create a trust problem. Users start questioning whether platforms are safe, even when the issue is caused by individual wallet mistakes. Over time, this slows adoption and invites more scrutiny from regulators.

How Individuals Can Protect Themselves

While crypto offers full control over money, that freedom comes with responsibility. Here are a few simple steps users can take to stay safer:

Never share your private key or recovery phrase with anyone.
Store keys offline whenever possible, such as using hardware wallets.
Double-check wallet addresses before sending large amounts.
Be cautious of messages, links, or emails asking for wallet access.

What Brands and Companies Can Do

For businesses, the stakes are even higher. One mistake can cost millions. Companies should:

Use proper secrets management tools to store private keys securely.
Limit access to sensitive wallet data to only essential team members.
Regularly rotate keys and monitor wallet activity for unusual behavior.
Educate employees about phishing and social engineering attacks.

Final Thoughts

As crypto adoption grows, so does the interest of attackers. These recent hacks are a reminder that security is not optional; users must follow strict protocols to avoid private key leaks. Staying alert, using proper tools, and following basic safety practices can go a long way in protecting both individual users and the wider crypto ecosystem.

Also Read: Bitcoin Range-Bound Due to Low Liquidity & Falling Open Interest

Disclaimer: This article is intended solely for informational purposes and does not represent financial, investment, legal, tax, or other professional advice. The opinions and views expressed are those of the author(s) and do not necessarily represent the position of cryptonewsz.com. Cryptocurrency investments and trading entail high risks, including possible loss of some or all of your investment, and prices may be influenced by external events like financial, regulatory, or political events. Past performance cannot be used to determine future results. Readers are strongly advised to do their own research and consult with an expert financial advisor prior to making any investment. cryptonewsz.com takes no responsibility for loss or damages sustained as a direct result of material contained in, or information, published through, this website. Explore our Terms and Conditions and Privacy Policy for more information.
See less

Written by Swatilakha Saha

Swati is a crypto writer and memer since her school days, deep into BTC, ETH, and everything web3. She’s ex-Shiba Inu, ex-CoinEx, and lives for crypto news, memes, and market chaos.

« Bitcoin Range-Bound Due to Low Liquidity & Falling Open Interest