World’s largest cryptocurrency exchange is hacked for $100 million

0
17


Binance, the world’s largest cryptocurrency exchange, may have lost more than $100 million following a hack of its Binance Smart Chain network.

A Reddit post by Binance discussing the incident said the company temporarily suspended transactions and the transfer of funds after detecting an exploit between two blockchains, a method of digital theft that has been used recently in at least one other major hack.

“The issue is contained now. Your funds are safe. We apologize for the inconvenience and will provide further updates accordingly,” CEO Changpeng Zhao said in a tweet.

Binance is the largest crypto exchange in the world, handling 1.4 million transactions per second and moving $2 billion worth of crypto assets per day. It is the latest crypto company to experience a targeted hack. 

Hackers struck Nomad in August, reportedly taking nearly $200 million. The Nomad hack was also an exploitation of a cross-chain bridge intended to allow the transfer of assets and information from one blockchain to another. Harmony lost about $100 million in a hack in June.

Crypto.com, known for its viral commercial starring Matt Damon as well as its recent $700 million deal to rename the Staples Center in Los Angeles as Crypto.com Arena, said in January that the hackers managed to bypass its two-factor authentication system and withdraw the funds from 483 customer accounts. Crypto platform Wormhole and Ronin Network were also targets of hackers this year.

Hackers target DeFi platforms, bridges

Cybersecurity experts say hackers often target decentralized finance, or DeFi, platforms with weak security. DeFi services are typically built on public blockchains, allowing users to exchange crypto back and forth without the need for an established financial institution like a bank or credit union. 

Hackers stole $1.9 billion in crypto from platforms worldwide this year between January and July, up from $1.2 billion during the same period in 2021, according to blockchain analytics firm Chainalysis. 

Zhao said the Binance issue took place on the BSC Token Hub, a cross-chain bridge that allows for the transfer of both digital assets and data between block chains.

Cross-chain bridges are viewed as susceptible to theft because of several inherent weaknesses, first and foremost being that they hold a lot of cryptocurrencies, thus providing a larger and more complex arena for hackers to infiltrate. Many sacrifice security as they develop quickly, making them more prone to bugs that hackers can discover and exploit. In addition, transactions often require few signatures and lack “a bigger development community, meaning that code isn’t scoured as widely and as carefully,” according to Cryptovantage.com.

“New on-chain governance mechanism”

Binance believes that $100 million to $110 million in funds were taken.

Binance said in a blog post on Friday that it was working on locking down any areas of vulnerability.

“A new on-chain governance mechanism will be introduced on the BNB Chain to fight and defend future possible attacks,” the post read.

Binance also said it will increase the number of community validators as it moves towards further decentralization. BNB Smart Chain currently has 26 validators. Having so few validators delayed how quickly Binance responded to the hack, but the company was still able to minimize the losses, it said in the blog post. 

Binance said last year that it was time for global regulators to establish rules for crypto markets. The company acknowledged at the time that crypto platforms have an obligation to protect users and to implement processes to prevent financial crimes, along with the responsibility to work with regulators and policymakers to set standards to keep users safe.





Source link

LEAVE A REPLY

Please enter your comment!
Please enter your name here