Just saw the DOJ unsealed an indictment against Andean Medjedovic, and this is honestly one of the wildest DeFi hacker stories I've come across. The guy allegedly stole $65 million across two major protocols - and the backstory is absolutely insane.

So who is Andean Medjedovic? Turns out he's a legitimate math prodigy. Graduated high school at 14 in Waterloo, Canada, then finished a math degree at the University of Waterloo in three years by age 17 (same school where Vitalik Buterin studied, though Vitalik dropped out). One of his professors told Bloomberg he'd never seen anyone graduate that early. The guy was genuinely gifted - participated in Code4rena hacking competitions, won prizes for finding security flaws, deep-dived into DeFi protocols.

But here's where it gets dark. Anonymous classmates described him as condescending and arrogant. More concerning - he apparently had serious issues with racist and anti-Semitic ideologies. That detail becomes relevant later because when Medjedovic actually executed his hacks, he embedded Neo-Nazi references and racial slurs directly into his code. Yeah, really.

The Indexed Finance hack happened in October 2021. Medjedovic noticed a mispricing vulnerability in their liquidity pools after reading about the protocol on a forum. He spent months writing a script, then used borrowed tokens to manipulate their smart contract reindexing process. He walked away with $16.5 million. When Canadian courts tried to hold him accountable, he just skipped his court hearing in December 2021 and disappeared - bouncing around Europe and South America before ending up on some island.

Then came the KyberSwap hack. This is where Andean Medjedovic allegedly got even bolder. He used hundreds of millions in borrowed crypto to create artificial price conditions, then exploited KyberSwap's AMMs to extract nearly $49 million. But he didn't just steal and run - he tried to extort the protocol developers. His demand? Complete control of the company, their governance token KyberDAO, all company documents, and their assets. Basically tried to hold the entire protocol hostage.

The DOJ alleges he attempted to launder everything through crypto mixers and bridge protocols. He even allegedly paid an undercover agent $80,000 to help move $500,000 through a bridge that had frozen his transactions.

What strikes me is how this case exposes both the technical vulnerabilities in early DeFi protocols and how someone with genuine skill can weaponize that knowledge. Medjedovic clearly understood AMMs and smart contract mechanics deeply - he just chose to exploit them. The fact that he's still at large as of the indictment is wild. US authorities are coordinating with international partners including Dutch law enforcement, but catching him is apparently proving difficult.

This whole situation is a stark reminder that DeFi security isn't just about code audits - it's also about the people with access to that code. The Andean Medjedovic case shows how dangerous it gets when someone brilliant decides to go rogue.