Mobius Token Hacked on BNB Chain, $2.15 Million Stolen

BNB's latest price was $650.34, down 1.706% in the last 24 hours. A critical vulnerability in the Mobius Token smart contract on BNB Chain allowed a hacker to steal over $2 million. The attacker quickly converted the tokens to stablecoins and routed the funds through Tornado Cash to obscure the trail. Despite the breach, BNB Chain has seen a resurgence in DeFi activity, with its total value locked surpassing $10 billion. The incident began at 07:31 UTC when a wallet deployed a rogue contract. Just two minutes later, another address initiated a series of suspicious transactions. Using only 0.001 BNB, the attacker minted 9.73 quadrillion MBU tokens and quickly exchanged them for stablecoins, netting $2.15 million. In the same process, the attacker also gained an additional 28.5 million MBU tokens. After the exploit, the stolen assets were moved to Tornado Cash, a popular protocol that anonymizes transactions. The method and speed of the exploit point to a calculated move to evade tracking and asset recovery. This incident further highlights the persistent vulnerabilities facing smart contract-based systems. Meanwhile, this Mobius hack makes it the latest victim in a wave of blockchain exploits that have resulted in the loss of around $2 billion across various platforms. Despite isolated incidents like the Mobius breach, BNB Chain is witnessing a significant resurgence in user and developer activity. Over the past months, the network has reemerged as a top contender in the DeFi space. Data from DefiLlama shows that the total value locked on BNB Chain has surpassed $10 billion, reaching a three-year high. BNB Chain also recently claimed the top spot in the decentralized exchange sector, outpacing both Ethereum and Solana. Market observers noted that the network’s growth is fueled by fresh institutional interest, an increase in DeFi participation, and strong demand for on-chain assets. Moreover, the momentum can also be partly attributed to Binance’s continued influence and Changpeng Zhao’s renewed focus on the blockchain network. The Mobius Token hack reveals ongoing vulnerabilities within DeFi ecosystems but does not seem to impede the broader recovery of BNB Chain. As the network grows, it remains crucial for developers and investors to prioritize security to prevent similar incidents in the future. Hackers drained over $2.15 million from Mobius Token smart contracts on the BNB Chain in a targeted exploit detected early May 11. The attacker deployed the contract from address 0xb32a53... at 07:31:38 UTC and initiated the exploit at 07:33:56 UTC, draining funds from the victim wallet 0xb5252f... The smart contract drained 28.5 million MBU tokens and converted them into stablecoins, resulting in a net loss of $2,152,219.99 for the victim. In total, the attacker stole 28.5 million MBU tokens and converted them to $2.15 million worth of USDT. The attacker’s wallet remains active and has retained the stolen funds as of publication. Mobius Token’s team has not yet released an official statement. In April 2025, blockchain security firm PeckShield reported that the space saw nearly $360 million in digital assets stolen across 18 hacking incidents. April’s losses show a 990% increase compared to March, when crypto lost to hacks totalled about $33 million. The largest chunk of the losses came from an unauthorized Bitcoin transfer. On April 28, a suspicious transfer of $330 million in BTC was flagged. The transfer was later confirmed to be a social engineering attack targeting an elderly individual in the United States.