Wu said that according to Decurity's post incident report, after negotiating with the hackers, most of the $5 million stolen by 1inch has been returned, and the hackers have retained a portion as a vulnerability bounty. This attack originated from a vulnerability in Fusion v1 smart contracts, mainly affecting the use of outdated versions of parsers, and ordinary user funds were not affected.