• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Bybit Loses $1.46 Billion in Ethereum Due to Cyber Attack

user avatar

by Giorgi Kostiuk

a year ago


The cryptocurrency exchange Bybit has confirmed that it has fallen victim to a sophisticated attack on its Ethereum cold wallets, resulting in a significant loss of funds.

Technical Details of the Attack

The attack leveraged a technique known as 'musked UI,' where all authorized signers on Bybit's ETH multisignature wallet were deceived into approving a malicious transaction. The compromised UI displayed the correct transaction details and the expected recipient address, without raising suspicions. The transaction message concealed a more nefarious operation - the approval of a change to the smart contract logic of the ETH cold wallet, granting unauthorized access to the attacker who then drained the wallet to an unidentified address.

Security Measures and Implications

Bybit promptly responded to the detected breach, ensuring that other cold wallets remained secure and that withdrawal and exchange operations continued to function normally. The incident raises serious concerns over the security of multisignature wallets, highlighting how UI elements can be manipulated to mislead authorized signers. This event serves as a critical challenge for developing new defensive measures in the crypto industry.

Tracking and Recovering Funds

Blockchain transparency allows for real-time tracking of fund movements. The stolen funds were transferred to an unknown address, as detailed in the Ethereum blockchain transaction log. Efforts are underway within the cryptocurrency community to trace and potentially recover the stolen assets. Blockchain analytics firms may play an essential role in tracking fund movements and identifying potential exit points.

The incident is a crucial reminder of the need for improving security measures in the crypto industry. Bybit's transparency and swift response to the incident underscore the importance of adapting to new challenges in the digital world, ready to inform future security best practices.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Binance Withdraws MiCA License Application Amid Regulatory Challenges

chest

Binance withdrew its MiCA license application from Greek authorities, advising EU users to withdraw their funds due to regulatory delays and the approaching compliance deadline.

user avatarEmily Carter

Ripple Case Approaches Final Judgment Amid Market Speculation

chest

The Ripple case is nearing a final judgment, with market focus shifting to potential penalties and changes required by the court.

user avatarTomas Novak

Coinbase Launches Smart Wallet to Enhance User Experience

chest

Coinbase introduces a smart wallet aimed at simplifying the onboarding process for users into its layer2 ecosystem, Base.

user avatarKaterina Papadopoulou

Solana ETF Filing Discussion Shifts Focus to Operational Mechanics

chest

The discussion around Solana ETFs is shifting from speculation to the operational details necessary for regulatory approval, highlighting the importance of custody, trust structure, and operational mechanics.

user avatarLi Weicheng

Investors Urged to Monitor SEC Responses and Custody Disclosures

chest

Investors should pay attention to SEC responses and custody disclosures regarding Solana ETFs as they will significantly impact the market.

user avatarLeo van der Veen

Base Network Surpasses 2 Billion in Total Value Locked

chest

Base network has surpassed 2 billion in total value locked, marking its evolution into a significant DeFi venue.

user avatarMaya Lundqvist

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.