Phemex, a cryptocurrency exchange based in Singapore, has suffered a major security breach, losing over $70 million. Hackers compromised a hot wallet, raising concerns in the crypto community.
Details of the Hack
The attack began when Phemex's hot wallet was compromised, leading to a theft of $30 million. More tokens such as $USDC, $USDT, $ETH, $LINK, $PEPE, $FET, and $AVAX were subsequently stolen. Security firms Cyvers and Lookonchain tracked suspicious activities and found transactions indicating a breach. The stolen assets include significant amounts of popular tokens: 3.48 million USDC, 841 ETH ($2.7 million), 110,701 LINK ($2.69 million), and 142 billion PEPE ($2.12 million).
Phemex's Response
To prevent further losses, Phemex temporarily suspended withdrawals. CEO Federico Variola addressed the issue, stating that the funds were taken from a hot wallet under investigation. He reassured users that the exchange's cold wallets are secure and auditable at any time due to the platform's proof-of-reserves system. As Variola stated, "As for cold wallets, they are protected, and everyone can verify that." Despite the hack, Phemex continues to offer its trading services as usual.
North Korean Connection Suspected
The hack has brought attention to North Korean cybercriminals, particularly the Lazarus Group, which has been linked to several high-profile crypto attacks in the past. This attack appears to follow the same pattern, indicating these groups are determined to exploit weaknesses in the crypto market for illegal funding. Phemex remains transparent and encourages users to stay vigilant and regularly verify their wallet balances.
With each breach, the stakes grow higher, and the need for stronger defenses becomes more urgent. Phemex is taking steps to compensate affected users and continues its investigation.
