• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Bybit Loses $1.46 Billion in Ethereum Due to Cyber Attack

user avatar

by Giorgi Kostiuk

a year ago


The cryptocurrency exchange Bybit has confirmed that it has fallen victim to a sophisticated attack on its Ethereum cold wallets, resulting in a significant loss of funds.

Technical Details of the Attack

The attack leveraged a technique known as 'musked UI,' where all authorized signers on Bybit's ETH multisignature wallet were deceived into approving a malicious transaction. The compromised UI displayed the correct transaction details and the expected recipient address, without raising suspicions. The transaction message concealed a more nefarious operation - the approval of a change to the smart contract logic of the ETH cold wallet, granting unauthorized access to the attacker who then drained the wallet to an unidentified address.

Security Measures and Implications

Bybit promptly responded to the detected breach, ensuring that other cold wallets remained secure and that withdrawal and exchange operations continued to function normally. The incident raises serious concerns over the security of multisignature wallets, highlighting how UI elements can be manipulated to mislead authorized signers. This event serves as a critical challenge for developing new defensive measures in the crypto industry.

Tracking and Recovering Funds

Blockchain transparency allows for real-time tracking of fund movements. The stolen funds were transferred to an unknown address, as detailed in the Ethereum blockchain transaction log. Efforts are underway within the cryptocurrency community to trace and potentially recover the stolen assets. Blockchain analytics firms may play an essential role in tracking fund movements and identifying potential exit points.

The incident is a crucial reminder of the need for improving security measures in the crypto industry. Bybit's transparency and swift response to the incident underscore the importance of adapting to new challenges in the digital world, ready to inform future security best practices.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Fidelity's Adoption of Chainlink Validates Tokenization Infrastructure

chest

Fidelity's cautious adoption of blockchain infrastructure through its integration with Chainlink serves as a significant validation of the role that oracle networks play in tokenization.

user avatarLucas Weissmann

Fidelity's FILQ Integration with Chainlink Enhances Fund Valuation Transparency

chest

Fidelity's integration of FILQ with Chainlink aims to improve the transparency and reliability of fund valuation data.

user avatarFilippo Romano

Cardano's Future Depends on Technical Upgrades

chest

The future of Cardano hinges on its ability to deliver necessary upgrades related to throughput and governance.

user avatarEmily Carter

BNB Chain Introduces New Roadmap for AI Agent Development

chest

BNB Chain has launched its Agent Studio roadmap to enhance AI agent development, providing AWS-linked deployment templates to attract builders and facilitate the creation of autonomous applications.

user avatarTomas Novak

Ripple Secures MiCA Authorization in Luxembourg, Strengthening European Presence

chest

Ripple has successfully obtained MiCA authorization in Luxembourg, enhancing its regulatory standing in Europe.

user avatarKaterina Papadopoulou

Bolivia Considers USDT Stablecoin for Payments Amid Economic Stabilization

chest

Bolivia is exploring the use of Tether's USDT stablecoin for payments to stabilize its economy and regulate crypto assets.

user avatarMaya Lundqvist

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.