After launching via a Discord channel on Oct. 28, AnubisDAO went on to raise roughly 13,256.4 Ether (ETH) using AlchemistCoin’s liquidity bootstrapping protocol (LBP), Copper. However, the funds were unexpectedly sent to a different address roughly 20 hours into the LBP.
CNBC spoke to one investor who claims to have lost almost $470,000 to AnubisDAO. The investor, Brian Nguyen, conceded to subscribing to a “buy first, do research later mentality,” describing the loss as “pretty painful.”
Nguyen noted that he was attracted to AnubisDAO because of its canine-themed branding amid the meteoric gains recently reaped by some dog-token investors after seeing Anubis promoted on Twitter by prominent pseudonymous decentralized finance advocate Sisyphus.
Anubis is the Greek name for the Egyptian god of death and the underworld, with Egyptian imagery depicting the god as donning the body of a human and the head of a dog.
Investors appear to have lost roughly $57 million worth of Ether in what many are describing as a rug-pull executed by the upstart canine-themed OlympusDAO fork, AnubisDAO.
Sisyphus has published a detailed timeline outlining AnubisDAO’s formation and launch and claims to have engaged law enforcement in both the United States and Hong Kong. Sisyphus has also offered to cease the civil proceedings should the perpetrator return the stolen finds minus a 1,000-ETH bounty.
In lieu of a case number which can be released to the public (hopefully this is available tomorrow), please see below for confirmation I am actually in touch with authorities https://t.co/jCgOwaq129
— Sisyphus (@0xSisyphus) October 31, 2021
Inside job?
According to Sisyphus, the idea for an OlympusDAO fork inspired by Shiba Inu’s branding arose from discussions among members of the PebbleDAO project during Tuesday and Wednesday.
A Telegram channel for the project was created on the same Wednesday, with its six original members all hailing from PebbleDAO. The following day, it is decided that the pseudonymous founding member “Beerus” would be tasked with deploying the LBP — a decision that Sisyphus now describes as a “critical mistake”:
“This was the critical mistake. This should have been done from the original multisig wallet.”
With just hours left until the LBP was scheduled to close on Friday, Beerus claimed “to have opened a malicious link from a PDF” and exposed the private keys used for the LBP launch. 13,556 ETH was then pulled from the LBP shortly after. However, Beerus’ personal wallet funds appear to remain “intact and under his control.”
Sisyphus also notes that “security researchers provided the PDFs from phishing emails” distributed during the day Beerus claimed to have clicked the malicious link, noting tha “at this point, none have found any malicious content contained in the PDFs.”
Beerus’ real-world information is also collated and partially published on Twitter, and Hong Kong authorities were contacted on Friday. Beerus filed a report and turned one computer over to Hong Kong police the following day.
Sisyphus also notes that wallets associated with the incident have since sent ETH to Coinbase, adding that the exchange has been notified of the transactions.