Kronos Research, a liquidity provider and market maker for the WOO crypto exchange, fell victim to a hack over the weekend, losing an estimated $25 million worth of crypto.

In a tweet late on Sunday, the Kronos team said it had paused all trading due to a security breach which compromised its API keys. Blockchain sleuth ZachXBT traced the activity to find that the hacker stole around 12,800 ETH worth $25 million.

The attack significantly impacted WOO, the exchange incorporated by the Kronos incubator which relies on Kronos almost exclusively for market making activities.

After briefly disabling certain trading pairs, WOO has now resumed all services, according to a tweet from a member of WOO’s team, who assured users that the network’s capital was not affected and all funds remained intact.

Blockchain research firm X-explore analysed the flow of funds on Monday and found that $22 million of the funds that were stolen from Kronos came from major crypto exchange Binance.

“The reason why hackers did not directly withdraw funds to their own addresses may be due to the exchange’s withdrawal whitelist mechanism, and the hackers happen to have control over these three addresses on the whitelist,” said X-explore in a tweet. 

At the time of writing, the native token of the WOO network was trading at $0.23, down around 4% over the last 24 hours.