TL;DR:
- Federal prosecutors charged a Maryland man over two 2021 Uranium Finance attacks that allegedly drained about $54 million and helped force the platformās collapse.
- The indictment says the first exploit took about $1.4 million, while a second breach caused roughly $53.3 million in losses.
- Authorities allege laundering through collectibles, have already seized about $31 million, and are pressing computer fraud and money laundering charges that could bring decades in prison.
Federal prosecutors have moved against the alleged architect of the $54 million Uranium Finance exploit, turning a long running DeFi breach into a fresh test case for crypto enforcement. According to the indictment, a Maryland man is accused of exploiting vulnerabilities in the platform in 2021, draining funds and helping push the exchange toward collapse. A major DeFi hack is now being reframed as a traditional criminal case, with prosecutors arguing that smart contract manipulation and laundering tactics deserve the same scrutiny as more familiar forms of financial theft under federal law, full stop now.
The case ties old losses to a sharper enforcement push
The indictment alleges that Jonathan Spalletta, 36, carried out two separate attacks against Uranium Finance and now faces one count of computer fraud and one count of money laundering. Prosecutors said the first exploit took place in April 2021, when he allegedly used deceptive transactions inside the protocolās smart contracts to withdraw more rewards than he was entitled to receive. That incident drained about $1.4 million from the liquidity pool. The first breach looked almost surgical, but it exposed a weakness that authorities say would soon lead to something far more destructive, just weeks later.
Weeks later, prosecutors allege, a second vulnerability in the protocolās code was exploited with greater effect. This time, losses reached about $53.3 million, a blow severe enough to leave Uranium Finance unable to continue operating. U.S. Attorney Jay Clayton said the defendant repeatedly hacked smart contracts to steal millions of dollars and destroyed a cryptocurrency exchange in the process. He also pushed back on any attempt to minimize the conduct, saying that calling crypto āfake internet moneyā does not alter the alleged crime. The governmentās message is that digital assets do not dilute legal accountability.
Investigators also allege that the stolen proceeds were laundered through purchases of high value collectibles, including rare PokƩmon cards, Magic: The Gathering cards, and a historic artifact linked to the Apollo 11 Moon Landing. Law enforcement has already recovered part of the haul, with authorities saying they seized about $31 million tied to the case in February last year. The recovery does not close the book, but it sharpens the stakes, as the prosecution becomes another signal that authorities are intensifying pressure on DeFi exploits and illicit crypto flows across crypto markets and enforcement priorities.
