disclaimer
Only governance can make the formal accusation of theft and this is merely a collection of evidence in my own opinions on the evidence. Everyone should be presumed innocent until proven guilty by use of trial by governance.
Additionally, there is a German TCV team member (@fragwuerdig ) named till, who has been serving as a part of the L1TF. L1TF. His national origin is named here to aid reports to police agencies because unlike The founder of this chain, there is absolutely nothing gray about this situation, in my opinion. I must repeat, this is my opinion based on available information, not an attempted defamation or any of the sort, if TCV team members have evidence that they did not commit this attack, they should reply to it in this thread. I do not believe such evidence exists because blockchain cryptographic ledgers are extremely clear. I would urge the community to only address information that can be confirmed on one of the two chains in question, injective and LUNC.
Notional labs has zero tolerance for theft or thieves.
Summary
TCV launched terraport, a smart contract that contained deliberately placed vulnerabilities. They then blamed a third party for the vulnerabilities because they can’t code so they subcontracted the code. The trouble is, it’s impossible to only blame the subcontractor, because they created the IBC routes necessary to exfiltrate the stolen funds as well. Specifically, the stolen funds were exfiltrated over IBC to injective. TCV very recently created those channels.
TCV has been given 24 hours to permanently shut down their validator by removing 100% of self-bounded stake. This will not harm delegators.
Motivation
Justice
Proposal
- Tombstone the TCV validator in a software upgrade
- Slash Every wallet connected to the attack by draining balances to zero into the community pool
- Declare that LUNC governance will not tolerate thieves and that TCV are thieves