Uppsala Security traced funds from the Ronin Bridge exploit announced on 2022-03-29, in which attackers stole 173,600 ETH and 25.5 million USDC through two fraudulent bridge withdrawals using hacked private keys. CAMS monitoring identified 206 Ethereum transactions, 12 ERC20 transactions, six token-swap transactions, and 22 suspicious wallets tied to the exploiter. The tracked assets reached Huobi, FTX, and Crypto.com across four exchange hot wallets, while swaps through 1inch and Uniswap converted some USDC to ETH. This source focuses on fund movement and exchange exposure, not malware or initial attribution.