Audit log

Every state-changing event for 8ightDAO: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

1. #1publishby system:backfill

   2026-05-28 17:44:18Z
   Score: ? → ? (no score change)
   anchoranchored

   chain

   ●mainnet-betaslot 422,768,090

   sig

   Sic97HaxkxWg…pQSDTYqWcopyexplorer ↗

   hash

   71xEs8w35Awu…ZdM9xTMScopysha256 → base58

   verifying row…full verify ↗

   canonical bytes (9972 B) ▸

   {"actor":"system:backfill","investigation_id":"cb6dbc1b-c466-4a62-b24b-9e33ac816240","kind":"publish","page_slug":"8ightdao","published_at":"2026-05-28T17:44:18.579Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"8ightDAO","sections":[{"content":"8ight Finance launched on the Harmony (ONE) blockchain around October 26, 2021, operating as a fork of OlympusDAO (OHM). The project marketed itself as a corrective alternative following the Snowdog DAO rug pull, which had left many investors with significant losses. The native token was EIGHT. The team operated under pseudonyms, with at least one member identified as @s7ven_8ight on social media. The team was anonymous and this was described as their first project.","heading":"Background and Launch","severity":"medium","sources":[{"credibility":2,"name":"8ight Finance Admits 'Opsec Was Low' After Treasury Compromised","type":"news_article","url":"https://fullycrypto.com/8ight-finance-admits-opsec-was-low-after-treasury-compromised"},{"credibility":3,"name":"8ight Finance (@8ight_finance) Twitter profile","type":"social_media","url":"https://www.twuzy.com/profile/8ight_finance"}]},{"content":"On December 6, 2021, 8ight Finance's entire treasury was drained. The stolen funds totaled approximately $1.75 million in stablecoins, including roughly 490,170 DAI, 378,417 DAI with 10,843 LP tokens, and 12,362 USDT, with an additional 868,587 DAI transferred between accounts. The team announced on Discord that the private key controlling the treasury had been compromised. According to the team's own statement: 'Two devs in the team has the key, they were sent through Facebook groups chat and Google Drive.' All funds were subsequently routed through Tornado Cash on Ethereum, rendering them effectively untraceable. The EIGHT token lost over 75% of its value within 24 hours of the announcement and was down approximately 98% from its all-time high.","heading":"Treasury Drain — December 2021","severity":"critical","sources":[{"credibility":2,"name":"8ight Finance completely drained after private key leak — Web3 Is Going Great","type":"news_article","url":"https://www.web3isgoinggreat.com/?id=2021-12-06-1"},{"credibility":2,"name":"8ight Finance Hacked: All Funds in Treasury Withdrawn due to Leak of the Private Key — CoinCodeCap","type":"news_article","url":"https://coincodecap.com/8ight-finance-hacked-all-funds-in-treasury-withdrawn-due-to-leak-of-the-private-key"},{"credibility":2,"name":"8ight Finance — REKT","type":"research","url":"https://rekt.news/8ight-finance-rekt"}]},{"content":"The circumstances of the treasury drain generated immediate community suspicion. Despite the team's explanation of an external compromise, several indicators drew scrutiny. First, the project had falsely assured investors that a multi-signature wallet was in place when it was not — rekt.news described this as 'the most basic of errors.' Second, the decision to route all funds directly to Tornado Cash precluded any recovery or on-chain attribution. Third, some community members alleged the developer pocketed the funds themselves, with at least one Discord member stating 'Compromised my ass… the team has rugged funds.' The team's framing as helpers of Snowdog DAO victims, while itself then allegedly losing investor funds under opaque circumstances, was noted as a pattern consistent with serial fraud in the DeFi space. rekt.news stated: 'If this was a planned event, then it's likely that the developers have a history.' No definitive proof of intentional fraud was established given Tornado Cash obfuscation. ZachXBT has flagged this entity, though the specific nature and content of that flagging was not independently located in public records during this investigation.","heading":"Rug Pull Allegations vs. Hack Narrative","severity":"high","sources":[{"credibility":2,"name":"8ight Finance — REKT","type":"research","url":"https://rekt.news/8ight-finance-rekt"},{"credibility":2,"name":"8ight Finance Admits 'Opsec Was Low' After Treasury Compromised — Fully Crypto","type":"news_article","url":"https://fullycrypto.com/8ight-finance-admits-opsec-was-low-after-treasury-compromised"},{"credibility":2,"name":"8ight Finance completely drained after private key leak — Web3 Is Going Great","type":"news_article","url":"https://www.web3isgoinggreat.com/?id=2021-12-06-1"}]},{"content":"8ight Finance's team publicly stated that a multi-signature wallet arrangement was in place to protect treasury funds. Post-incident reporting confirmed that no multi-sig was actually implemented. This misrepresentation — regardless of whether the subsequent drain was an external hack or an inside job — constitutes a material false statement to investors. The private key was held by two developers and transmitted over Facebook group chat and Google Drive, both of which lack basic encryption appropriate for cryptographic secrets.","heading":"Broken Security Promises","severity":"high","sources":[{"credibility":2,"name":"8ight Finance — REKT","type":"research","url":"https://rekt.news/8ight-finance-rekt"},{"credibility":2,"name":"8ight Finance Hacked: All Funds in Treasury Withdrawn due to Leak of the Private Key — CoinCodeCap","type":"news_article","url":"https://coincodecap.com/8ight-finance-hacked-all-funds-in-treasury-withdrawn-due-to-leak-of-the-private-key"}]},{"content":"Following the treasury drain, the team proposed a recovery plan offering two options to the community: constructing a new protocol on Avalanche (AVAX) with liquidity borrowing functionality and airdropping tokens to EIGHT holders, or distributing $250,000 in remaining marketing funds proportionally to affected users. The team announced the project was 'not safe to use anymore' and instructed investors to stop buying EIGHT tokens. There is no evidence of successful restitution to investors.","heading":"Recovery Plan and Aftermath","severity":"medium","sources":[{"credibility":2,"name":"8ight Finance Admits 'Opsec Was Low' After Treasury Compromised — Fully Crypto","type":"news_article","url":"https://fullycrypto.com/8ight-finance-admits-opsec-was-low-after-treasury-compromised"},{"credibility":2,"name":"8ight Finance Hacked: All Funds in Treasury Withdrawn due to Leak of the Private Key — CoinCodeCap","type":"news_article","url":"https://coincodecap.com/8ight-finance-hacked-all-funds-in-treasury-withdrawn-due-to-leak-of-the-private-key"}]},{"content":"The drained funds were transferred from the 8ight Finance treasury to an intermediate Ethereum address before being routed into Tornado Cash. A community member identified the intermediate address, though further tracing was blocked by the mixer. The use of Tornado Cash as the immediate destination is a common obfuscation technique associated with intentional fund theft. No smart contract vulnerability was identified as the attack vector; the sole documented entry point was possession of the private key.","heading":"On-Chain Indicators","severity":"high","sources":[{"credibility":2,"name":"8ight Finance completely drained after private key leak — Web3 Is Going Great","type":"on_chain","url":"https://www.web3isgoinggreat.com/?id=2021-12-06-1"},{"credibility":2,"name":"8ight Finance — REKT","type":"research","url":"https://rekt.news/8ight-finance-rekt"}]}],"sources_used":[{"credibility":2,"name":"8ight Finance completely drained after private key leak — Web3 Is Going Great","type":"news_article","url":"https://www.web3isgoinggreat.com/?id=2021-12-06-1"},{"credibility":2,"name":"8ight Finance Hacked: All Funds in Treasury Withdrawn due to Leak of the Private Key — CoinCodeCap","type":"news_article","url":"https://coincodecap.com/8ight-finance-hacked-all-funds-in-treasury-withdrawn-due-to-leak-of-the-private-key"},{"credibility":2,"name":"8ight Finance Admits 'Opsec Was Low' After Treasury Compromised — Fully Crypto","type":"news_article","url":"https://fullycrypto.com/8ight-finance-admits-opsec-was-low-after-treasury-compromised"},{"credibility":2,"name":"8ight Finance — REKT","type":"research","url":"https://rekt.news/8ight-finance-rekt"},{"credibility":3,"name":"8ight Finance (@8ight_finance) Twitter profile archive — Twuzy","type":"social_media","url":"https://www.twuzy.com/profile/8ight_finance"}],"summary":"8ight Finance (also referred to as 8ightDAO) was an OHM fork launched on the Harmony blockchain in October 2021, positioning itself as a relief project for victims of the Snowdog DAO rug pull. In December 2021, approximately $1.75 million in treasury stablecoins was drained after the team admitted to transmitting private keys through Facebook group chat and Google Drive. The incident is disputed: community members alleged an intentional rug pull while the team claimed external compromise, but funds were sent to Tornado Cash making attribution impossible.","timeline":[{"date":"2021-10-26","event":"8ight Finance Twitter account created, indicating approximate project launch on Harmony blockchain.","source":"8ight Finance Twitter profile archive","source_url":"https://www.twuzy.com/profile/8ight_finance"},{"date":"2021-12-06","event":"Treasury drain announced. Approximately $1.75 million in stablecoins stolen via compromised private key. Team admits key was shared via Facebook chat and Google Drive. Funds routed to Tornado Cash.","source":"Web3 Is Going Great","source_url":"https://www.web3isgoinggreat.com/?id=2021-12-06-1"},{"date":"2021-12-07","event":"Team proposes two-option recovery plan: rebuild on AVAX with airdrop, or distribute $250,000 marketing funds to holders.","source":"CoinCodeCap","source_url":"https://coincodecap.com/8ight-finance-hacked-all-funds-in-treasury-withdrawn-due-to-leak-of-the-private-key"},{"date":"2021-12-08","event":"rekt.news publishes full post-mortem, noting the absence of promised multi-sig, raising the possibility of intentional insider theft.","source":"rekt.news","source_url":"https://rekt.news/8ight-finance-rekt"}]},"v":1}

   Verify offline (run on your own machine)

   python -m src.verify_decision d04cd0de-41c7-4e2c-85c8-424fdbfaf235copy