As attacks continue, a hacker stole $950,000 from a cryptocurrency vanity address.
WikiBit 2022-09-28 17:14On September 25, 732 Ethereum were seized by the hacker and sent to the authorized cryptocurrency mixing provider Cyclone Money, according to on-chain data from PeckShield. Here, the funds were first exchanged for other cryptocurrencies and then sent to the programmer's personal wallet.
An Ethereum “vanity address” created with the Profanity tool contained $950,000 in ETH, claims blockchain security company PeckShield. On Monday, the situation was reported. According to on-chain data from PeckShield, the hacker took 732 Ethereum on September 25 and moved it to the allowed digital currency mixing service Cyclone Money. Here, the money was converted into other cryptocurrencies before being transferred to the programmer's personal wallet.
The popular Profanity vanity address generator's vulnerabilities were exploited in this hack. Although vanity addresses are created using a tool called Obscenity, this method for creating them makes them easier to breach using a beast force attack. The amount of cryptocurrency in the wallet may be able to balance off the penetration, which demands a lot of computing power.
The team of programmers behind Profanity took action to make sure that nobody used the tool following the attacks.
The exploit was carried out similarly to how Wintermute was last week. The algorithmic cryptocurrency market maker Wintermute, situated in the UK, was breached on Tuesday, September 20, and lost $162.2 million in DeFi activities. The Wintermute hack targeted a weak private key produced by the Profanity app.
Since January, the profanity flaw has been known. But on September 13, the decentralized exchange 1inch Network revealed the potential vulnerability and alerted the Twitter crypto community to the dangers posed by Profanity wallets.
On September 18, the previous week, hackers carried out a similar hack in which customers of a vanity Ethereum wallet had their coins stolen for $3.3 million. The tokens were taken from a variety of Ethereum addresses created using the Profanity tool by the hacker.
Private key compromise is one of the most significant attack vectors, according to the blockchain cybersecurity firm Certik, with losses of around $273.9 million reported so far this year.
As a reminder, WikiBit is ready to help you search the qualifications and reputation of projects in a bid to protect you from hidden dangers in this risky industry!
iOS: t.ly/UUCj
Android: t.ly/cfYt
Disclaimer:
The views in this article only represent the author's personal views, and do not constitute investment advice on this platform. This platform does not guarantee the accuracy, completeness and timeliness of the information in the article, and will not be liable for any loss caused by the use of or reliance on the information in the article.
- Token conversion
- Exchange rate conversion
- Calculation for foreign exchange purchasing
0.00