Friday, November 1, 2024
HomeComputer SecurityBithumb Hacked - Hackers Transferred $20 Million Worth Cryptocurrencies From Bithumb Wallet

Bithumb Hacked – Hackers Transferred $20 Million Worth Cryptocurrencies From Bithumb Wallet

Published on

Malware protection

Bithumb Hacked 3rd time, Yes, One of the worlds largest cryptocurrency exchange Bithumb Hacked by unknown cybercriminals and they have stolen nearly $20 million worth cryptocurrencies from its wallet.

Bithumb is a South Korean cryptocurrency exchange allegedly facing continuous cyber attacks since 2017, and this is 3 rd time in past 2 years.

Bithumb detected an unauthorized transaction of the company’s cryptocurrency through Bithumb’s abnormal trading monitoring system on 29th March.

- Advertisement - SIEM as a Service
https://twitter.com/DoveyWan/status/1111839155380801536

The attackers withdrew around 3 million EOS($13.4 million) and 20 million Ripple coins (XRP)($6 million).

https://twitter.com/DoveyWan/status/1111842113518489600

In June 2018 about $31 million of cryptocurrency was stolen from Bithumb in a hack since then, Now Bithumb hacked 3rd time again and it’s a second biggest attack in it’s history.

Bithumb believes that the incidents took place with the help of internal staff and said “it was our fault that we only focused on the defense of outside attack and lack of verification in internal staff.”

Hackers have stolen the private key from EOS account g4ydomrxhege and all the EOS was transferred to attackers wallet address ifguz3chmamg .

According to Dovey Wan , Founding Partner Primitive with wheatpond “EOS won’t be able to freeze this time, or it’s now too late, Hacker has been disposing of the stolen EOS via ChangeNow, a non-custodial crypto swap platform does not require KYC/account “

Bithumb Hacked

Bithumb said that all the stolen cryptocurrency is owned by a company, and all the member’s asset is under the protection of cold wallet.

“According to the company’s manual, Bithumb secured all the cryptocurrency from the detection time with a cold wallet and checked them by blocking deposit and withdrawal service.”

Internal investigation reveals that the incident is an “accident involving insiders” and also company said, “This won’t be happened again as we develop the internal workforce verification system.”

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

LightSpy iOS Malware Enhanced with 28 New Destructive Plugins

The LightSpy threat actor exploited publicly available vulnerabilities and jailbreak kits to compromise iOS...

ATPC Cyber Forum to Focus on Next Generation Cybersecurity and Artificial Intelligence Issues

White House National Cyber Director, CEOs, Key Financial Services Companies, Congressional and Executive Branch...

New PySilon RAT Abusing Discord Platform to Maintain Persistence

Cybersecurity experts have identified a new Remote Access Trojan (RAT) named PySilon. This Trojan...

Konni APT Hackers Attacking Organizations with New Spear-Phishing Tactics

The notorious Konni Advanced Persistent Threat (APT) group has intensified its cyber assault on...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Notorious WrnRAT Delivered Mimic As Gambling Games

WrnRAT is a new malware attack that cybercriminals have deployed by using popular gambling...

ClickFix Malware Infect Website Visitors Via Hacked WordPress Websites

Researchers have identified a new variant of the ClickFix fake browser update malware distributed...

IcePeony Hackers Exploiting Public Web Servers To Inject Webshells

IcePeony, a China-nexus APT group, has been active since 2023, targeting India, Mauritius, and...