BtcTurk Hack Recovery Program: Program Info

On 14th August, BtcTurk experienced unauthorized transfers involving multiple cryptocurrencies, with losses totaling approximately $48 million USD. This bounty program seeks actionable intelligence leading to the recovery of stolen assets. The incident involved large transfers of ether (ETH), Avalanche's AVAX (AVAX), Arbitrum's ARB (ARB), Base (BASE), Optimism's OP (OP), Mantle and Polygon's MATIC (MATIC), with the bulk of the funds consolidating into several recipient addresses.

In scope

Target	Type	Severity
BtcTurk Hack Recovery Program Copy Copied	Other	None

Target

BtcTurk Hack Recovery Program

Copied

TypeOther

Severity

None

Focus Area

Eligible (Must Lead to Direct Recovery Action)

Confirmed identification of active wallets containing stolen funds, accompanied by actionable freeze requests.
Evidence that stolen funds have entered a custodial wallet (e.g., exchange, OTC desk, broker) where freezing is possible.
Discovery of service providers (such as bridges, mixers, or payment processors) currently processing stolen funds, with actionable freeze requests.
Information from the attacker that directly results in funds being returned.

Not Eligible:

Public blockchain analysis without new actionable recovery steps.
Hacker wallets' tracking details
Historical information or speculative connections that cannot lead to fund freezing.
Vulnerability reports or unrelated security issues.
Personal identity tracing or OSINT investigations without a direct recovery path.

Overview

This bounty program, launched in the aftermath of the August 14, 2025 BtcTurk exploit, offers a reward of up to $2,4 million USD ~ upto 5% of any recovered funds — for actionable intelligence that directly contributes to the recovery of stolen assets.

The bounty is open to security researchers, blockchain analysts, white‑hat hackers, and community members worldwide. Submissions will be eligible for rewards only if the provided information leads to successful recovery. Publicly available data, speculative reports, or generic wallet addresses without actionable follow‑up will not qualify.

Program Details and Rewards

Bounty Reward: Up to 5% of all successfully recovered funds.

Potential Pool: Up to $2,4 million, if full recovery is achieved.

Objective: Reward program participants who assist in locating, securing, and retrieving these funds back to BtcTurk.

This is open to ethical hackers, white-hat researchers and anyone committed to making crypto safer.

Known Information

Stolen Assets Destination Addresses:

Ethereum: 0xA041FeB3a8297c5689FEE180083164A061a17fD6
Ethereum: 0xb4b537626e21df5386cf167d1e654b38785056cc
Ethereum: 0x7d91d1ebeba91257733a523409125aedac5d8b6e
Bitcoin: bc1q3xgyvmfk6mw6zvhjklsw7v8wl2dk0xtm35ulut

Subsequent Related Addresses:

Ethereum: 0x95Ab53305bC71D0e6e2d46F2E62690599CBC87Fc
Ethereum: 0xDDFA0884f32d0D210597A996060fbDB5b068b0Ea
Ethereum: 0x0fE41fe8786329fB6bd8F2baa73aa55e770f0951

Disclosure Guidelines

Do not discuss this program or any vulnerabilities (even resolved ones) outside of the program without express consent from the organization.
No vulnerability disclosure, including partial is allowed for the moment.
Please do NOT publish/discuss bugs.

Legal & Ethical Considerations

All submitted intelligence must comply with applicable laws and ethical standards.
Do not engage in unauthorized access, exploitation of systems without consent, or any activity that violates the law.
Reports must not include personally identifiable information (PII) obtained through unlawful or unethical methods.
Rewards are subject to internal verification and compliance review.
High-value rewards may require Anti-Money Laundering (AML) and Know Your Customer (KYC) verification.

BtcTurk Hack Recovery Program: Program info