Harmony’s $100M Hack Was Due to a Compromised Multi-Sig Scheme, Says Analyst
On June 23, 2022, the Harmony development team announced that $100 million was siphoned from the Horizon bridge, and the organization explained it was working with national authorities and forensic specialists. According to an account published Polygon’s chief information security officer, Mudit Gupta, the Horizon bridge attacker allegedly took control of the multi-signature wallet leveraged in Harmony’s bridge. Harmony’s Multi-Sig Exploited Polygon’s CSO Says, Harmony Protocol’s Founder Found Evidence That ‘Private Keys Were....
Related News
Crypto.com has revealed that 483 user accounts were compromised in the recent hack that resulted in unauthorized withdrawals of about $34 million in cryptocurrencies, including bitcoin and ether. Nonetheless, the company stressed that customer funds were never at risk. Crypto.com’s Hack Postmortem and CEO’s Comments Crypto.com revealed Thursday the number of users affected by the unauthorized crypto withdrawals that occurred on Jan. 17 and the cryptocurrencies stolen. The company wrote: The incident affected 483 Crypto.com users. Unauthorized withdrawals totaled 4,836.26 ETH,....
Users thought they were signing up for an affordable NFT drop by the famed artist, timed to coincide with his second Christie's auction. An admin account for Beeple’s official Discord group was compromised overnight resulting in a fake NFT drop that saw users lose an estimated 38 ETH. An admin from Beeple's Discord named "Multi" confirmed to the group on Nov. 10 that their account had been compromised despite having 2FA. The perpetrator went on to impersonate Multi and the Beeple Announcements Bot to promote a fake NFT drop from Beeple on Nifty Gateway.The incident is the latest in a long....
SRM and MSRM tokens and fees discounts were not changed and were working as before, said developers. Solana's developers forked the widely used token liquidity hub Serum, after being compromised by a hack on the bankruptcy exchange FTX on Nov. 11 that led to a series of unauthorized transactions. According to pseudonymous developer Mango Max on Twitter, a "verified build of the same version has been made and deployed" on Nov 12. Additionaly, the upgrade authority and fee revenues "have been changed and are now managed by a multi-sig controlled by a team of trusted developers." Serum (SRM)....
"With our BitGo wallet solution it becomes impossible for our users to lose their bitcoins due to us being hacked or stealing them." So wrote Bitfinex CFO Giancarlo Devasini about the bitcoin exchange's then-new multi-signature security architecture roughly a year before $60m was stolen in one of the industry's highest-profile hacks this week. While we know that multi-sig accounts were impacted by the hack (which doesn’t look good for the security feature), it's still unclear exactly how this breach occurred. Still for many it begs the question, what does this breach mean for....
The head trader of a $100 million global cryptocurrency Ponzi scheme has pleaded guilty and is facing up to five years in prison, according to the U.S. Department of Justice (DOJ). “The defendants allegedly misappropriated large sums of investors’ money to lease a Lamborghini, shop at Tiffany & Co., make a payment on a second home, and more.” Empiresx’s Head Trader Pleads Guilty The U.S. Department of Justice (DOJ) announced Thursday that Joshua David Nicholas has pleaded guilty for his role as the “head trader” in a “global cryptocurrency....