Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Bitcoin Security Technology

Binance Says More Than $40 Million in Bitcoin Stolen in 'Large Scale' Hack (techcrunch.com) 138

Hackers have stolen over $40 million worth of bitcoin from Binance, world's largest cryptocurrency exchanges, the company said on Tuesday. From a report: In a statement, the company said hackers stole API keys, two-factor codes and other information in the attack. Binance traced the cryptocurrency theft -- more than 7,000 bitcoins at the time of writing -- to a single wallet after the hackers stole the contents of the company's bitcoin hot wallet. Binance, the world's largest cryptocurrency exchange by volume, said the theft impacted about 2 percent of its total bitcoin holdings.
This discussion has been archived. No new comments can be posted.

Binance Says More Than $40 Million in Bitcoin Stolen in 'Large Scale' Hack

Comments Filter:
  • The fastest way to become a millionaire is to start a bitcoin repository and steal from everyone when it's "hacked."

    • by greenfruitsalad ( 2008354 ) on Wednesday May 08, 2019 @12:21AM (#58555644)

      If Mr Trump has taught us anything, it's that the fastest way to become a millionaire is to start as a billionaire.

    • The fastest way to become a millionaire is to start a bitcoin repository and steal from everyone when it's "hacked."

      I know...it's soooooooooooooo tempting to set up a repository and then have it hacked (wink, wink!).

      It's pretty much the perfect crime. The police won't do shit because it'll take forever to explain to them what a "bitcoin" is. And even if they finally understand it they'll literally have no idea what to do.

  • by Gravis Zero ( 934156 ) on Tuesday May 07, 2019 @11:24PM (#58555458)

    Security is expensive because you either shell out a lot of money to get it or they take a lot more money because you don't have it. This is a good example of what happens when you don't take security seriously.

    • by rtb61 ( 674572 )

      This is what happens when some fiscal get rich quick scheme fad hits the skids. Imaginary millionaires see their imaginary millions disappearing and feel they are entitled to grab more then their share of the fad as it slowly but surely implodes and seek to purloin others pieces of a shrinking pie to make up for their own losses.

      Everyone of the cryptocurrency hacks an inside job, some from the top and so low end underpaid security types, seeing the employment coming to an end and being paid in shrinking wo

      • by DigitalisAkujin ( 846133 ) on Wednesday May 08, 2019 @02:27AM (#58555962) Homepage

        Where is this coming from? The tech has many tangible real world uses for money transfer across international borders. You don't even really need to hold it. Buy for currency A. Sell for currency B. You can even do it on the same day and chances are the market won't even really change the value of it.

        But let's ignore that value proposition for a second. Would you rather have Venezuelan cash or Bitcoin?

        If you live in a place where the fiat currency is stable sure it's not really much of a replacement but stable western countries do not make up the whole world.

        This is why there's a floor to the value of Bitcoin. There's always someone in the world that needs to transfer some funds or hold the value of their existing funds in a more stable currency than what they have available to them. There's many places in the world where even having USD is a crime.

        My mother likes to tell this anecdote of leaving Russia in the early 90s. People were being searched for currency before being allowed to board the plane. It was illegal to take more than a few hundred USD worth with you. She had way more than that sewed into her jacket. The only reason they didn't pat her down more is because she was holding me standing in line while I was sleeping. Now imagine if she could have moved that money days prior through the internet with no one knowing?

        • Comment removed (Score:4, Informative)

          by account_deleted ( 4530225 ) on Wednesday May 08, 2019 @05:44AM (#58556350)
          Comment removed based on user account deletion
          • So the only good thing for Bitcoin is using it in illegal activities (Smugling in this case).

            Only on the internet would someone say "smuggling" to a refugee fleeing a country with money that they actually earned through labor. A few years after said country had a literal revolution. The laws they were breaking were meant to penalize them leaving. No shit?

            Coming from someone with a quote that says

            Don't fight for your country, if your country does not fight for you.

            The problem with the government knowing everything is how easy it becomes to abuse the common person. We're talking about people who are coming to a new country with everything that they posses in this worl

        • by AmiMoJo ( 196126 )

          Nobody knowing? You have to convert your fiat money to Bitcoin somehow, and if the government really cares they can easily regulate all exchanges and demand they keep records.

        • by Junta ( 36770 )

          The tech has many tangible real world uses for money transfer across international borders

          This is not a benefit of the technology, it's a reflection of the practical reality that you are less likely to get caught at the moment. If caught doing it, you are in as much legal trouble as you would have been if you were caught doing this with other currency. There have been repeated examples where bitcoin is hardly anonymous in practice and people have been tracked down.

          Would you rather have Venezuelan cash or Bitcoin?

          If I'm in Venezuela, I'm screwed either way. The Venzuelan cash problem is a symptom of a bigger problem that bitcoin doesn't real

          • There is absolutely not a floor to the value of bitcoin.

            I promise you that one of two things will happen in the future. Either the price of 1 BTC hits $1,000,000 USD or the protocol breaks down as it becomes possible to bruteforce a wallet certificate. I don't know how long this will take but it will eventually due to the deflationary nature of the protocol. (Meaning the amount of coins in circulation drops over time due to losses of the wallet (containing said cert) and the inability to mine more.

            Same for Bitcoin. Certainly in the use you champion repeatedly (government-free international money transfers) it's pretty much illegal everywhere.

            This is completely wrong in every way. As long as you report your

            • by Junta ( 36770 )

              This is completely wrong in every way. As long as you report your profit / loss properly to the tax authority in the jurisdiction you are in, follow applicable laws, and pay proper taxes there is absolutely nothing illegal taking place when you exchange cash for Bitcoin.

              If you do that, then you don't need bitcoin to facilitate it. The stories I've heard have been focused on international transfers while staying under the tax authority (or in some cases the authorities in general) radar. I've done plenty of currency conversion without bitcoin.

        • by asylumx ( 881307 )

          There's many places in the world where even having USD is a crime.

          Citation needed, very badly. I can't even find fake news to back that up, let alone anything from a reliable source. Even North Korea not only recognizes it, but some shops there use only foreign currency including USD, and DO NOT accept the local currency North Korean 'wons'.

  • That's rough (Score:2, Offtopic)

    by rsilvergun ( 571051 )
    but at least she's still got her singing career.
  • Who actually will own the bitcoin in this wallet now? Binance supposedly has identified it correctly, maybe enough that a court will award it back to them after a few years. The police, binance, and everyone else will look at this address like hawks.

    So as soon as someone transfers something away from it, they will pounce on that other address for money laundering, trafficking in stolen goods, whatever. This means it is actually worthless for the thieves, right? They stole it but they can't actually take i

    • I dont know a lot about bitcoin but i wondered that as well since everything is really tracked on there... What about one of those bitcoin ATMs? do thoes still exist? can you really not launder bitcoin at all?

      But then if you think about it, criminals migrate to countries with less stringent laws all the time. You would need to get co-operation from the country to prosecute. Could it not be broken up in somalia or russia or something and traded for gold there? then all the small pieces would be effectively l

    • by infolation ( 840436 ) on Wednesday May 08, 2019 @12:35AM (#58555686)
      In theory bitcoin is intended to be fungible, ie a stolen coin is just as valuable as any non-stolen coin.

      But some companies have devised tracking methods to determine and track the origin of coins. Coins tracked from dubious sources are known as 'tainted' and some exchanges value these coins less by refusing to convert tainted coins back to fiat.

      An example would be Coinbase who use the blockchain intelligence platform Neutrino to keep track of tainted coins.

      In the end, as long as there are some exchanges willing to ignore taint then thieves have a method to convert stolen coins into another currency that can't be tracked, eg monero, and avoid linking their converted funds with the original stolen funds.
    • Can some legal court in some country tell and force the miners who create the blockchain for transactions to do a specific transaction where they transfer they bitcoin to a court specified address so Binance has their property back or is this actually not possible?

      They can't make a new transaction using that address because they don't have the key, and cryptographically brute-forcing it would take centuries.

      If most of the miners agree, they can 'undo' every block that happened after the money was transferred (and of course the block with that transaction, too), but it would have to be much more than 51% because they are unwinding so many transactions.

      They could also agree to delete that transaction without changing anything else, but then they would need to for

    • by ThePyro ( 645161 )

      They may never get the coins back. Nobody except the hackers can make it happen. There's no centralized authority that can just print another 7000 coins to reimburse the losses. Police might seize computers with wallet files, but they'd need cooperation from the hackers in order to unlock them.

      On the other hand, blockchain evidence sticks around forever, so the criminals could potentially still be caught years later. That's already happened in at least one case.

      The other unfortunate possibility is that the

    • Just shapeshift it to a more anonymous currency, run some anonymous transactions, and move it back. Even if tumbling doesn't fully clean things, the fact that the audit trail is completely broken by the currency shift is enough to ensure any currency isn't tainted.

    • It would require 51% of all the miners out there to reverse transactions, and because the coins have passed through so many hands already, this may be difficult to impossible. Even if were doable, there would be an uproar from people who committed no crime, but had tainted coins. It would get people to abandon the currency, then make cryptocurrencies which are more resistant to this.

      I would say it is pretty much impossible for Binance to get their stuff back.

      Moral of the story: Maybe exchanges need some

  • Exchanges have got to be - by now - some of the most security conscious companies on the planet. And yet, stuff like this happens.

    At my work, we are continually bombarded by ever-more-sophisticated phishing and spear phishing attacks. Just yesterday a colleague was discussing one such email that was essentially indistinguishable from a legitimate internal email from our accounting department. Only the timing was a bit off, so he picked up the phone.

    Security is hard; if you are a valuable target, security is

    • > Exchanges have got to be - by now - some of the most security conscious

      Why would you think this? The exchanges lack _motive_ to keep their transactions and behavior traceable. Since so much of the allure of bitcoin and the similar currencies is the _lack_ of traceability of private transactions and so much of the traffic is illegal (for tax evasion, illegal goods on the dark web, or extortion), why would any but a few exchanges want good record keeping? Especially when poor record keeping or customer p

      • WTF? Record-keeping has nothing to do with security, at least not in this case.

        As for motive: how about *not* losing $40 million to a hack. That's plenty of motive for you.

        • by mcmonkey ( 96054 )

          But if it's not *my* $40 million, how is that a motive?

        • by DarkOx ( 621550 )

          WTF? Record-keeping has nothing to do with security, at least not in this case.

          This is why bitcoin goes to zero. 90% of what bitcoin does is "record keeping" that is primary use case its all about ownership and transference of ownership and keeping records about that. The other bit is mining but that is far and way the less important part.

          Fact is bitcoin does not work. if it did work, it would deliver on its promise of direct currency exchanges without the middle man. In practice its turned out there are major technical hurdles that make transactions to slow and expensive. The so

        • > As for motive: how about *not* losing $40 million to a hack.

          As for motive, how about being the one to _steal_ $40 million at one bite? It may be a distasteful motive, but deliberate theft from their own clients has been unsurprisingly commonplace among the crypto-currency exchanges.

    • Exchanges have got to be - by now - some of the most security conscious companies on the planet.

      All the evidence says this is false.

    • If we want to move parts of civilization fully online (as with cryptocurrencies), we have to find a solution for criminality - specifically, we need to find a way to add risk to criminal activity. Possibly through law enforcement, possibly through vigilantism, possibly through some other means.

      There's always Israel's solution.

  • Keep your bitcoins offline in a hardware wallet.

    Convenient, secure, cheap. Pick two.

  • I find it fascinating with all the corruption and hacks that it keeps gaining traction among larger and larger players. While I've always been skeptical in regards to bitcoins I sure seem to have missed out. Back in the day when I worked for a repair shop and all I did was remove virus and intrusions. All I seemed to hear was people getting scammed out of money on the internet. So when some one was like "send me money for virtual currency". Well I scoffed at the idea. I was to poor to pay the extra electr
  • Internal fraud at banks is probably more then 40 million a month. Here Binance limited their exposure to 40 million. I would say they actually are taking security seriously and did a better job than any of the banks I know of.
  • Ha ha ha ha, err, I mean, "Goodness gracious, that's terrible!"

    Seriously, playing with cryptocurrency is hilarious until you lose it to a scammer/hacker/insider/whatever.

    I admit, I find it extremely entertaining to watch a rat find the cheese and then lose it to another rat who promises to "store it securely." That shit just never gets old.

  • Biance can handle loosing 40 million...
  • Bitcoin ignorant here. If the money was stolen and it can be traced, then can't it just be restored? I thought this whole public ledger and stuff was suppose to protect from this sort of thing. So if you could, please explain how Bitcoin can be stolen for us plebs.
  • I swear I thought the headline was about Beyonce' disclosing a large-scale Bitcoin hack. Damn, she's multi-talented.

It is better to travel hopefully than to fly Continental.

Working...