The hackers in question, used an exploit known as Create2. What this does, is it creates a temporary address that closely mimics the actual address of a crypto transaction. This technique, also know as address poisoning, allows the user to predict the address of a transaction before it is even deployed on the Ethereum network.
