Skip to main content
Sign in
Uranium Finance1 decision on this page

Audit log

Every state-changing event for Uranium Finance: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

  1. #1publishby system:backfill
    2026-05-22 04:05:28Z
    Score: ?? (no score change)
    anchoranchored
    chain
    mainnet-betaslot 421,342,888
    sig
    5WdzmKmzx4bD…nz2auvTbexplorer ↗
    hash
    EJAnBLkLSGiK…RQwm8Em5sha256 → base58
    verifying row…full verify ↗
    canonical bytes (8161 B) ▸
    {"actor":"system:backfill","investigation_id":"e0463c59-ba9a-4255-9cd9-c04bd3076c38","kind":"publish","page_slug":"uranium-finance","published_at":"2026-05-22T04:05:28.532Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Uranium Finance","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://cointelegraph.com/news/50m-reportedly-stolen-from-bsc-based-uranium-finance","type":"other","url":""},{"credibility":3,"name":"https://cryptopotato.com/50m-drained-from-uranium-finance-hack-or-rug-pull/","type":"other","url":""},{"credibility":3,"name":"https://rekt.news/uranium-rekt","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.coindesk.com/policy/2026/03/31/maryland-man-charged-in-usd50-million-uranium-finance-hack-after-u-s-seized-usd31-million-in-crypto","type":"other","url":""},{"credibility":3,"name":"https://www.bleepingcomputer.com/news/security/hacker-charged-with-stealing-53-million-from-uranium-crypto-exchange/","type":"other","url":""},{"credibility":3,"name":"https://www.cryptotimes.io/2026/03/31/u-s-authorities-charge-hacker-behind-54m-uranium-finance-hack/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://rekt.news/uranium-rekt","type":"other","url":""},{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-uranium-finance-hack-april-2021","type":"other","url":""},{"credibility":3,"name":"https://medium.com/immunefi/building-a-poc-for-the-uranium-heist-ec83fbd83e9f","type":"other","url":""},{"credibility":3,"name":"https://cryptoslate.com/the-most-recently-hacked-defi-project-couldnt-even-copy-and-paste-uniswap-and-sushiswaps-code/","type":"other","url":""},{"credibility":3,"name":"https://www.quadrigainitiative.com/casestudy/uraniumfinancehack.php","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-uranium-finance-hack-april-2021","type":"other","url":""},{"credibility":3,"name":"https://medium.com/immunefi/building-a-poc-for-the-uranium-heist-ec83fbd83e9f","type":"other","url":""},{"credibility":3,"name":"https://cryptoslate.com/the-most-recently-hacked-defi-project-couldnt-even-copy-and-paste-uniswap-and-sushiswaps-code/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.bleepingcomputer.com/news/security/hacker-charged-with-stealing-53-million-from-uranium-crypto-exchange/","type":"other","url":""},{"credibility":3,"name":"https://www.theblock.co/post/266790/uranium-finance-hacker-may-have-cashed-out-via-magic-the-gathering-cards-zachxbt-says","type":"other","url":""},{"credibility":3,"name":"https://www.banklesstimes.com/articles/2026/03/31/doj-alleged-uranium-finance-hacker-blew-54m-on-pokemon-cards-lunar-artifacts/","type":"other","url":""},{"credibility":3,"name":"https://rekt.news/uranium-rekt","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.coindesk.com/policy/2026/03/31/maryland-man-charged-in-usd50-million-uranium-finance-hack-after-u-s-seized-usd31-million-in-crypto","type":"other","url":""},{"credibility":3,"name":"https://decrypt.co/307601/feds-recover-31-million-in-crypto-from-2021s-uranium-finance-exploit","type":"other","url":""},{"credibility":3,"name":"https://www.coindesk.com/policy/2025/02/24/u-s-law-enforcement-seizes-usd31m-in-crypto-tied-to-uranium-finance-hack","type":"other","url":""},{"credibility":3,"name":"https://www.trmlabs.com/resources/blog/u-s-authorities-seize-31-million-in-uranium-finance-exploits-investigation","type":"other","url":""},{"credibility":3,"name":"https://www.securitiesdocket.com/2026/03/31/maryland-man-charged-with-defrauding-crypto-exchange-of-over-50-million-in-hacks/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://rekt.news/uranium-rekt","type":"other","url":""},{"credibility":3,"name":"https://cryptopotato.com/50m-drained-from-uranium-finance-hack-or-rug-pull/","type":"other","url":""},{"credibility":3,"name":"https://thedefiant.io/news/hacks/upstart-amm-uranium-finance-suffers-50m-hack-second-attack-in-a-month","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://cointelegraph.com/news/50m-reportedly-stolen-from-bsc-based-uranium-finance","type":"other","url":""},{"credibility":3,"name":"https://cryptobriefing.com/bsc-protocol-uranium-finance-hacked-50-million/","type":"other","url":""},{"credibility":3,"name":"https://decrypt.co/307601/feds-recover-31-million-in-crypto-from-2021s-uranium-finance-exploit","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.theblock.co/post/266790/uranium-finance-hacker-may-have-cashed-out-via-magic-the-gathering-cards-zachxbt-says","type":"other","url":""},{"credibility":3,"name":"https://www.theblock.co/post/343165/us-authorities-seize-31-million-in-crypto-linked-to-2021-uranium-finance-hack","type":"other","url":""}]}],"sources_used":[],"summary":"Uranium Finance was a Binance Smart Chain-based automated market maker (AMM) that was exploited twice in April 2021, resulting in total losses of approximately $54.7 million. The larger exploit on April 28, 2021, drained roughly $53.3 million across 26 liquidity pools due to a mathematical error in its forked Uniswap v2 pair contracts; the protocol subsequently shut down permanently. In March 2026, U.S. authorities indicted Jonathan Spalletta, a Maryland resident, on computer fraud and money laundering charges in connection with both attacks, after previously seizing approximately $31 million in cryptocurrency in February 2025.","timeline":[{"date":"2021-03-01","event":"Uranium Finance Twitter account created, approximately one month before the major exploit. Protocol rapidly accumulates over $50 million in TVL.","source":""},{"date":"2021-04-08","event":"First exploit: Jonathan Spalletta allegedly drains approximately $1.4 million by abusing the AmountWithBonus variable in Uranium's rewards contract. Attacker later returns most funds but retains ~$386,000 as a purported bug bounty, which prosecutors would later call a sham.","source":""},{"date":"2021-04-28","event":"Second exploit: A mathematical error in the UraniumPair v2 swap function (1,000 vs. 10,000 constant mismatch) is exploited across 26 liquidity pools, draining approximately $53.3 million (~$57.2 million at peak valuation) about two hours before a scheduled v2.1 patch migration.","source":""},{"date":"2021-04-28","event":"Post-exploit: Uranium Finance removes its GitHub repository and takes down its website. Stolen funds begin moving through Tornado Cash and AnySwap bridge.","source":""},{"date":"2021-04-29","event":"Rekt News publishes analysis of the exploit, flagging suspicious timing and the GitHub deletion, and questioning whether the bug may have been intentionally introduced.","source":""},{"date":"2021-05-01","event":"Immunefi publishes a proof-of-concept analysis of the exploit mechanics, confirming the 100x constant mismatch vulnerability.","source":""},{"date":"2023-01-01","event":"ZachXBT publishes tracing of stolen Uranium Finance funds, identifying suspected conversion through rare Magic: The Gathering card purchases as a laundering vector.","source":""},{"date":"2025-02-24","event":"U.S. authorities (SDNY and HSI San Diego) seize approximately $31 million in cryptocurrency linked to the 2021 Uranium Finance exploits. This marks the first public linkage of an individual to the case.","source":""},{"date":"2026-03-31","event":"Jonathan Spalletta, 36, of Rockville, Maryland (aliases: 'Cthulhon', 'Jspalletta'), is indicted by federal prosecutors in Manhattan and surrenders to authorities. He faces one count of computer fraud (max 10 years) and one count of money laundering (max 20 years).","source":""}]},"v":1}
    Verify offline (run on your own machine)
    python -m src.verify_decision 40221f75-6c47-43a2-82d7-bb27b53d7584
How verification works. The “Row integrity” check above is computed in your browser — your machine recomputes the SHA-256 of the canonical bytes and compares against the stored hash. No avoid.net server can fake that check. The “full verify” link goes one level deeper: your browser fetches the on-chain transaction from a Solana RPC node and confirms the same hash is in the memo. If you don’t want to trust either avoid.net or the public RPC, run the CLI verifier on your own machine — python -m src.verify_decision <event_id>.