Brothers, a multi-signature wallet of a crypto whale was severely attacked due to private key leakage, with total losses amounting to about $27.3 million.

The attacker has laundered approximately $12.6 million through Tornado Cash and still holds about $2 million in liquid assets. They currently still control the victim's multi-signature wallet, which maintains a high-leverage long position in the Aave protocol, supplying about $25 million worth of ETH as collateral while borrowing approximately $12.3 million in DAI.

The attacker's address shows multiple large ETH transfers to Tornado Cash for mixing and laundering. Meanwhile, the health factor of the victim's multi-signature Aave position is low, posing potential liquidation risks. If ETH prices fluctuate, it could trigger further losses.

Security Reminder:

1. The leakage of the private key is the core reason for this incident. Even multi-signature wallets cannot completely resist the risk of a single private key compromise.

2. DeFi users must strengthen key management by using hardware wallets, regularly rotating signers, and avoiding exposing private keys in connected environments.

3. Leveraged operations amplify risks. It is advised to closely monitor the health factor of positions and avoid excessive leverage during high volatility periods.

In short, in the crypto world, there are no small matters; safety first.