[ad_1]
/ latest / 2019/01 / report-cryptopia-hack-continuous-17k-cryptopia-portfolios-drained-of-1675-eth /
The Blockchain badysis company, Elementus, announced that Cryptopia, a New Zealand-based digital content trading company, told us that it suffered a security breach on January 14 (which resulted in "losses"). important "), continues to suffer from this attack with the pirate) still flies 1 675 ETH on Sunday 28 January.
On January 15, Cryptopia announced that it had "suffered a security breach involving significant losses" on Jan. 14. Cryptopia sent this tweet to inform the public:
– Cryptopia Exchange (@Cryptopia_NZ) January 15, 2019
Elementus used its blockchain badysis technology (the "Elementus search engine") to examine what had happened in Cryptopia to determine "how the theft took place", "the lost amount" and " the current status of stolen funds ", and reported the results of this survey in a blog post published Jan. 21.
Here is their account of the events that took place from January 13 to January 17:
- "Sunday, January 13 at 8:28: The funds begin to come out of the two hot wallets of Cryptopia, the one containing the ether and the other of the chips."
- "Sunday, January 13th at 23:58: With the empty central portfolios, amounts of residual funds are starting to leave the secondary portfolios of 76k + Cryptopia, a process that would continue for several days."
- "Monday, January 14 at 6 o'clock in the morning: Cryptopia suspends its transactions, announcing that they undergo an unplanned maintenance."
- "Tuesday, January 15 at 3 o'clock in the morning: Cryptopia unveils the security breach and New Zealand law enforcement intervenes."
- "Thursday, January 17 at 5:58: the last funds of Cryptopia are exhausted."
Elementus estimated that just for the loss of ETH and ERC20 chips, the hackers had managed to steal about $ 16 million in crypto. He also pointed out two things that make Cryptopia piracy different from other famous burglaries:
- "Cryptopia hacking has involved a large number of portfolios", which means that "thieves must have had access to not a private key, but thousands of them".
- "The hacking continued for days after Cryptopia discovered the breach;" the robbers "took their time to extract the badets for nearly five days".
At the time, Elementus had noticed that it seemed that "Cryptopia had not only lost its funds, but also access to all or almost all of its 76k + Ethereum portfolios," one possible explanation being that "Cryptopia had its private keys stored in a single server without redundancy". If the hackers had obtained access to such a server, they "could have downloaded the private keys before erasing them from the server, which would prevent Cryptopia from accessing their own portfolios".
One of the conclusions of their investigation is as follows: "1 948 Ethereum wallets and 46 000 USD in Ether remain in danger".
Yesterday, Elementus announced via another blog post that, 15 days after the hackers had transferred funds from Cryptopia's two main hot wallets, the Cryptopia attackers stole an additional 1,675 ETH on Cryptopia portfolios on January 28:
"Among the portfolios concerned are the 1,948 risk portfolios we identified earlier, some of which continued to accumulate funds as of today, and the list also includes more than 5,000 portfolios that had already been dumped in the original hack, but have since been completed, probably by unknown users of Cryptopia ".
According to Elementus, these funds began to be paid on January 28 at 6:59 am and "continued throughout the day", accumulating in Ethereum address 0x3b46c790ff408e987928169bd1904b6d71c0030k ("one of the portfolios used in the previous series of violations" ).
Elementus has two conclusions after investigating hacker actions on January 28:
- "Cryptopia no longer has control of their Ethereum wallets, and the hacker still has control."
- "Despite this hacking, many Cryptopia users continue to deposit funds into their Ethereum portfolios."
The Elementus team believes that some Cryptopia users continue to send funds to Cryptopia because most of these funds come from "mining pools" and they badume that "these payments are sent on behalf of miners who have chosen to receive their funds. rewards automatically by "direct deposit" and have since forgotten. "
Featured Image Credit: Photo via Pexels.com
[ad_2]
Source link
