WEB3
Update: CoinSpot Reportedly Falls Victim to $2.4M Hack via “Private Key Compromise”
by BSC News
November 9, 2023
The stolen assets were subsequently routed through ThorChain and Wan Bridge to the Bitcoin network, where they were converted to 24 Wrapped Bitcoin (WBTC) through Uniswap and dispersed across four different addresses.
Australian Crypto Exchange CoinSpot rocked by a major security breach that saw cybercriminals make off with a staggering $2.4 million. A recent report from CertiK shared with BSC News revealed the shocking details of this massive exploit.
Red flags were raised on November 8 when CertiK observed dubious transactions from CoinSpot's hot wallets. Two CoinSpot wallets reportedly sent 1,282 ETH to an External Owned Account (EOA), amounting to about $2.4 million.
Blockchain security firm CertiK has pointed fingers at a "probable private key compromise" as the root cause of this security nightmare. This compromise likely occurred within at least one of CoinSpot's hot wallets.
"There is strong evidence of a private key compromise based on the on-chain data. Private key compromises on centralized exchanges occur when an external threat actor has compromised the victim's systems," Joe Green, Senior OSINT & Blockchain Analyst at CertiK, told BSC News. "It is difficult to say how this could’ve been prevented because we do not have any insight into how CoinSpot stores their private keys."
The Trail of Digital Heist
Blockchain investigator ZachXBT picked up the trail, exposing two transactions into the hacker's wallet. To cover their tracks, the hackers transferred the ill-gotten funds to the Bitcoin network using ThorChain and Wan Bridge.
According to reports, 831 ETH were converted into BTC via THORChain. Furthermore, the hacker transformed 451.7 ETH into Wrapped Bitcoin (WBTC) before being dispatched via Wan Bridge.
The stolen assets made their escape as they were skillfully converted into 24 Wrapped Bitcoin (WBTC) via Uniswap. From there, the ill-gotten WBTC was further transformed into Bitcoin and dispersed across four distinct addresses.
CoinSpot, a long-established player in the crypto space since 2013, serves a vast user base of approximately 2.5 million, with support for over 400 cryptocurrencies. The exchange operates under the vigilant watch of the Australian financial regulatory institution, AUSTRAC.
Disclaimer
Disclaimer: The views expressed in this article do not necessarily represent the views of BSCNews. The information provided in this article is for educational and informational purposes only and should not be construed as investment advice. BSCNews assumes no responsibility for any investment decisions made based on the information provided in this article
Related News
Latest News
8h : 48m ago
Sonne Finance Hacked for $20M, Markets Paused on Optimism Network
9h : 18m ago
Bitget Wallet Launches Bitget Onchain Layer and $10M $BWB Ecosystem Fund
May 14, 2024
Gamestop Parody Memecoin Crosses $100M Market Cap: What is $GME?
May 14, 2024
What is Maneki Memecoin?
May 14, 2024
Tornado Cash Founder Found Guilty and Sentenced to 64 Months in Prison
May 13, 2024
Binance Labs New Investment: What is Zest Protocol?
May 13, 2024
Japan’s Metaplanet Adopts Bitcoin as Reserve Asset Amid Yen's Decline
May 11, 2024
Weekly Article Recap: 5/06-5/10
More News