Hackers Steal Bitcoins Worth $41m

Uploaded on 2019-05-30 in TECHNOLOGY--Hackers, FREE TO VIEW

Hackers have stolen $41m (£31m) worth of Bitcoin in a major crypto-currency heist. The Binance exchange, which stores Bitcoin and other crypto-currencies for members, said hackers took 7,000 bitcoins in one go. Withdrawals have now been suspended on the platform.

"We beg for your understanding in this difficult situation," Binance said.

However, the exchange said it would replace the lost cash with the help of its emergency insurance fund. According to Binance, the attackers used a variety of techniques to break in. They deployed viruses and used phishing attacks to get security information. 

This eventually allowed them to access the exchange's "hot wallet", an online cache of bitcoins readily available for customer transactions.The hot wallet contained about 2% of Binance's total crypto-currency assets. Other wallets were "secure and unharmed", the firm said.

'Patient Hackers'

The hackers "had the patience to wait" and acquire access to a number of accounts before withdrawing the huge haul of bitcoins, according to Binance.

"It was unfortunate that we were not able to block this withdrawal before it was executed," the company's statement read.

"Once executed, the withdrawal triggered various alarms in our system.

"We stopped all withdrawals immediately after that."

Now, the ability to withdraw funds from the exchange has been disabled and may not be restored until next week.
In a live video chat, Binance's chief executive Changpeng Zhao sought to answer questions about the hack.

"I haven't really slept much for the last 29 hours," he said. "To be honest I don't feel that well… it's not a great day."

However, he told Binance users that he and his colleagues were working to secure the exchange and prevent any further hacks. He added that he was asking other exchanges to block bitcoins associated with the hacked wallet from being transferred elsewhere, which would render them largely useless.

While Binance is one of the largest crypto-currency exchanges, the heist is not the largest the Bitcoin world has seen since Mt. Gox was hacked to the tune of $470m in 2014.

BBC

You Might Also Read:

The Future Of Cash (£):

After A $65m Hack, Is Bitcoin Really Safe & Secure?:

 

« Cyber Threats And Nuclear Weapons Systems
Facebook Sues Rankwave For Data Misuse »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

HireVergence

HireVergence

HireVergence is a full service IT staffing and recruiting firm with a focus on cyber and information security.

A-SIT Secure Information Technology Center

A-SIT Secure Information Technology Center

A-SIT was founded in 1999 as a registered nonprofit association and is established as a competence center for IT-Security.

Yokogawa Electric

Yokogawa Electric

Yokogawa is an electrical engineering company providing measurement, control, and information technologies including industrial cyber security.

Shadowserver Foundation

Shadowserver Foundation

Shadowserver Foundation aims to improve internet security by raising awareness of compromised servers, malicious attackers and the spread of malware.

ACI Solutions

ACI Solutions

ACI Solutions is a managed IT services and network security provider working with diverse global commercial, government and public sector clients.

TechGuard Security

TechGuard Security

TechGuard Security was founded to address national cyber defense initiatives and US critical infrastructure security.

The Open Group

The Open Group

The Open Group: Leading the development of open, vendor-neutral IT standards and certifications.

Bowbridge

Bowbridge

Bowbridge provides anti-virus and application security solutions for SAP systems.

RangeForce

RangeForce

RangeForce delivers the only integrated cybersecurity simulation and skills analysis platform that combines a virtual cyber range with hand-on training.

Theos Cyber Solutions

Theos Cyber Solutions

Theos Cyber provides service-first cybersecurity solutions to digital businesses in Asia.

ARGOS Cloud Security

ARGOS Cloud Security

ARGOS aims to simplify and strengthen cloud security, by creating a visual map of security vulnerabilities, to your priceless information stored in any cloud provider environment.

Codezero Technologies

Codezero Technologies

Codezero is at the forefront of microservices development, employing an identity-aware overlay network that delivers zero-trust security to DevOps.

Secolve

Secolve

Secolve is Australia’s next generation OT specialist cyber security firm, working with key industries to protect the nation’s critical infrastructure.

SFY Information Technology

SFY Information Technology

SFY helps companies with Cyber Security and Managed IT, allowing them to focus on what really matters to them.

tmc3

tmc3

tmc3 is an award-winning, people-centric consultancy that is transforming cyber security from an overhead into an organisational enabler.

Monokee

Monokee

Monokee offers a solution that seamlessly integrates powerful Identity and Access Management (IAM) capabilities with a low/no code identity orchestrator.