Shiba Inu Team Issues Last Chance To Shibarium Hacker Before Time Runs Out
Shiba Inu’s core contributors and the K9 Finance DAO have escalated their restoration marketing campaign with an on-chain ultimatum to the Shibarium bridge exploiter, deploying a brand new bounty contract funded with 20 ETH and broadcasting the phrases on to the attacker by way of Ethereum Input Data Messages (IDM).
Shiba Inu Team Drops Final 20 ETH Deal
The newest IDM, despatched on November 3, 2025 at 06:32 UTC from a K9 developer-labeled account, lays out a trustless path to return frozen KNINE tokens and declare the reward earlier than the provide decays after which expires. “Dear Shibarium Bridge Hacker… New 20 ETH bounty to return stolen KNINE tokens,” the message reads, specifying the bounty contract handle and the atomic settlement stream: “Settlement is atomic once we name recoverKnine(). KNINE is transferred again to Shibarium bridge and ETH is transferred to you.” It additionally units express time parameters: “Bounty will begin to lower in 21-days (Nov 18)… [and] will expire in 28 days (Nov 25).”
The 20 ETH bounty is escrowed on Ethereum at 0x5EA2…D4d0, a verified contract titled “KnineRecoveryBountyDecayAcceptMultiFunder,” which exhibits a present stability of 20 ETH and identifies k9dev.eth because the creator 5 days earlier. The contract’s learn/write interfaces and verified supply allow the attacker to permission the bounty contract to spend KNINE and, if desired, name an express settle for() operate to lock the deal earlier than the group triggers the recoverKnine() settlement.
Public messaging from Shiba Inu developer Kaal Dhairya has amplified the urgency. In a post on X, Dhairya pressed the exploiter to take the on-chain provide: “Yo, Shibarium bridge attacker, get up—seize free money earlier than the provide expires this time and do one thing proper.” The comment follows weeks of damage-control updates about validator-key compromise and a multi-firm investigation.
K9 Finance confirms that is the ultimate structured try to resolve the episode with out litigation or additional escalation. In an ecosystem submit revealed by The Shib Magazine, the group states that the 20 ETH contract “makes good on a public promise… to increase one closing, bigger bounty provide to the entity behind the Shibarium Bridge exploit,” after an preliminary on-chain 5 ETH proposal in mid-September was rebuffed.
According to that account, the exploiter counter-demanded 50 ETH; K9 declined, reiterating that the KNINE at concern is blacklisted and unusable. The new contract, they add, is designed to shut the loop “with out direct communication” via an atomic alternate as soon as approval is granted.
K9 has additionally warned the neighborhood to ignore opportunistic scams across the bounty discourse. “Watch out for scams, imposters, and malicious hyperlinks. This is the final submit within the thread,” the DAO wrote on X because it wrapped a public replace sequence, underscoring there can be no token migration or “v2” associated to this incident. The warning goals to preempt pretend declare portals and phishing that usually proliferate after high-profile exploits and bounty bulletins.
The “final probability” framing displays the arc of the incident since mid-September, when a flash-loan-aided validator seize enabled the attacker to authorize a malicious state and drain bridge belongings, sparking a sequence of containment steps and an preliminary bounty. Contemporary protection documented the 5 ETH on-chain provide and its 7-day decay/30-day expiry schedule; the brand new 20 ETH contract iterates on the identical “code is regulation” design however with increased stakes and a shorter fuse on the decaying element.
At press time, Shiba Inu traded at $0.00000907.