Hackers Steal 7000 BTC from Binance in Biggest Attack of 2019

Wednesday, 08/05/2019 | 08:17 GMT by Arnab Shome
  • Victims will be compensated from the exchange's SAFU fund.
Hackers Steal 7000 BTC from Binance in Biggest Attack of 2019
Finance Magnates

Binance has become the victim of a “large scale” cyber attack that resulted in the theft of 7000 Bitcoins worth around $40.8 million.

The exchange publically reported the security breach on Tuesday and explained that the hackers somehow obtained “a large number of user API keys, 2FA codes, and potentially other info” to carry out the attack.

“The hackers used a variety of techniques, including phishing, viruses and other attacks. We are still concluding all possible methods used. There may also be additional affected accounts that have not been identified yet,” the exchange noted.

The exchange ensured that funds stored in its hot wallets were only compromised, which consists of around two percent of the exchange’s total holdings.

“The hackers had the patience to wait, and execute well-orchestrated actions through multiple seemingly independent accounts at the most opportune time. The transaction is structured in a way that passed our existing security checks,” Binance explained.

Too many coincidences?

The report of the breach came hours after unscheduled server maintenance by the exchange. While communicating about the maintenance activity, Changpeng “CZ” Zhao, founder and CEO of Binance, specifically mentioned that all “funds are #safu” which now created a stir in the community.

This also overlapped with a scheduled ask-me-anything (AMA) session by Zhao, which he did not cancel despite to the sudden crisis.

Answering to a question related to this recent breach, Zhao hinted that the exchange is considering to roll back the transaction data related to the theft of Bitcoins.

“To be honest, we can actually do this probably within the next a few days. But there’re concerns that if we do a rollback on the Bitcoin network at that scale, it may have some negative consequences, in terms of destroying the credibility for bitcoin,” Zhao stated.

This, however, was not welcomed by a major section of the Bitcoin community.

“The team is still deciding that, and we are running through the numbers and checking everything,” Zhao added. “It’s interesting that it’s a tech solution [suggested] to us by the community, including some of the core members of the bitcoin development team. We will consider that very, very carefully, with the feedback we are receiving.”

Compensating the victims

Binance was quick enough to ensure that it will fully compensate all the victims from its Secure Asset Fund for Users (SAFU).

In addition, other crypto exchanges are also diving in to support the affected exchange by blacklisting the addresses to which the stolen funds were transferred as we have seen in the past that hackers immediately head to fiat-based exchanges to cash out the digital currencies.

Though exchanges like Cryptopia and Bithumb were attacked earlier this year, Binance’s breach is the largest crypto heist in 2019. Moreover, Binance being one of the largest digital asset exchange on the globe also raised questions on the security measures taken by crypto exchanges.

Binance has become the victim of a “large scale” cyber attack that resulted in the theft of 7000 Bitcoins worth around $40.8 million.

The exchange publically reported the security breach on Tuesday and explained that the hackers somehow obtained “a large number of user API keys, 2FA codes, and potentially other info” to carry out the attack.

“The hackers used a variety of techniques, including phishing, viruses and other attacks. We are still concluding all possible methods used. There may also be additional affected accounts that have not been identified yet,” the exchange noted.

The exchange ensured that funds stored in its hot wallets were only compromised, which consists of around two percent of the exchange’s total holdings.

“The hackers had the patience to wait, and execute well-orchestrated actions through multiple seemingly independent accounts at the most opportune time. The transaction is structured in a way that passed our existing security checks,” Binance explained.

Too many coincidences?

The report of the breach came hours after unscheduled server maintenance by the exchange. While communicating about the maintenance activity, Changpeng “CZ” Zhao, founder and CEO of Binance, specifically mentioned that all “funds are #safu” which now created a stir in the community.

This also overlapped with a scheduled ask-me-anything (AMA) session by Zhao, which he did not cancel despite to the sudden crisis.

Answering to a question related to this recent breach, Zhao hinted that the exchange is considering to roll back the transaction data related to the theft of Bitcoins.

“To be honest, we can actually do this probably within the next a few days. But there’re concerns that if we do a rollback on the Bitcoin network at that scale, it may have some negative consequences, in terms of destroying the credibility for bitcoin,” Zhao stated.

This, however, was not welcomed by a major section of the Bitcoin community.

“The team is still deciding that, and we are running through the numbers and checking everything,” Zhao added. “It’s interesting that it’s a tech solution [suggested] to us by the community, including some of the core members of the bitcoin development team. We will consider that very, very carefully, with the feedback we are receiving.”

Compensating the victims

Binance was quick enough to ensure that it will fully compensate all the victims from its Secure Asset Fund for Users (SAFU).

In addition, other crypto exchanges are also diving in to support the affected exchange by blacklisting the addresses to which the stolen funds were transferred as we have seen in the past that hackers immediately head to fiat-based exchanges to cash out the digital currencies.

Though exchanges like Cryptopia and Bithumb were attacked earlier this year, Binance’s breach is the largest crypto heist in 2019. Moreover, Binance being one of the largest digital asset exchange on the globe also raised questions on the security measures taken by crypto exchanges.

About the Author: Arnab Shome
Arnab Shome
  • 6654 Articles
  • 102 Followers
Arnab is an electronics engineer-turned-financial editor. He entered the industry covering the cryptocurrency market for Finance Magnates and later expanded his reach to forex as well. He is passionate about the changing regulatory landscape on financial markets and keenly follows the disruptions in the industry with new-age technologies.

More from the Author

CryptoCurrency