Bithumb Hacked Again: Over 3 Million EOS Transferred Out From Exchange’s Hot Wallet

click here to see original post

According to early reports from security researchers, South Korean cryptocurrency exchange Bithumb has suffered a major attack that started on Friday (March 29) around 01:40 UTC. (This is the second major attack on Bithumb, with the first one occurring in June 2018, when the exchange lost $30 million in crypot.)

One of the first people to report the news of the attack on Bithumb was Dovey Wan, a founding partner at Primitve Ventures:

According to Dovey’s Twitter thread and information we have gathered from other sources, here is what seems to have happened so far (all time information is in UTC):

  • The attack started on March 29 at 01:40 with the hacker creating EOS wallet “ifguz3chmamg”.
  • Between 13:16 and 15:35 on March 29, 3,132,672 EOS were transferred from wallet address “g4ydomrxhege” (which belongs to Bithumb) to wallet address “ifguz3chmamg” (which belongs to the hacker) in 16 transfers.
  • Around 15:21 on March 29, the hacker started transferring the stolen EOS to various other crypto exchanges (including Huobi, HitBTC, and Changelly). 
  • Around 16:08 on March 29, Bithumb started transferring the remaining balance at wallet address “g4ydomrxhege” to its cold wallet (“bithumbshiny”), a process that is still ongoing at the time of writing (08:42 on March 30).

Here are some more updates from Dovey at 02:06 UTC on March 30:

Also, it seems that over 20 million XRP tokens were stolen as well:

As the story develops, we will update this article…

Share !