Hackers Stole $32 Million in Ethereum; 3rd Heist in 20 Days by shotokanzh

View this thread on steempeak.com
hacking · @shotokanzh ·
$0.32
Hackers Stole $32 Million in Ethereum; 3rd Heist in 20 Days
[Source](http://thehackernews.com/2017/07/ethereum-cryptocurrency-hacking.html "Permalink to Hackers Stole $32 Million in Ethereum; 3rd Heist in 20 Days")

# Hackers Stole $32 Million in Ethereum; 3rd Heist in 20 Days

![ethereum-cryptocurrency-hacking][1]

An unknown hacker has just stolen nearly **$32 million worth of Ethereum** – one of the most popular and increasingly valuable cryptocurrencies – from Ethereum wallet accounts linked to at least three companies that seem to have been hacked.

This is the third Ethereum cryptocurrency heist that came out two days after an alleged hacker [stole $7.4 million worth of Ether][2] from trading platform CoinDash, and two weeks after an unknown attacker hacked into South Korean cryptocurrency exchange Bithumb and stole [more than $1 Million in Ether][3] and Bitcoins from user accounts.  
  
On Wednesday, Smart contract coding company Parity issued a [security alert][4], warning of a critical vulnerability in Parity's Ethereum Wallet software, which is described as "the fastest and most secure way of interacting with the Ethereum network."

Exploiting the vulnerability allowed attackers to compromise at least three accounts and steal nearly 153,000 units of Ether worth just almost US$32 million at the current price.  

![ethereum-cryptocurrency-hack][5]

The attack started late Tuesday and continued on Wednesday, resulting in a total of three transactions, which can be seen on [Etherscan.io][6]. The three victims of the attack [identified][7] are: Parity says the vulnerability affected the contract used to create multi-signature Ethereum wallets in Parity version 1.5 or later, [warning][8] its users to move their Ether from their in-browser wallets to more secure accounts immediately.

###  White Hat Hackers Group Holds $75 Million Worth of Ethereum

![ethereum-cryptocurrency-hack][9]

Yes, 377,000 more Ether worth over $75 Million were also drained by white hat hackers.

As the attack began, a group of white hat hackers used the same exploit to drain approximately 377,000 Ether from other vulnerable wallets into holding accounts in order to protect them from black hat hackers, Coindesk reports.  
  
The Whitehats are currently holding the [rescued funds][10] and has promised to return the funds to their owners once this security threat passed.  

> "The White Hat Group were made aware of a vulnerability in a specific version of a commonly used multisig contract. This vulnerability was trivial to execute, so they took the necessary action to drain every vulnerable multisig they could find as quickly as possible," White Hats wrote on [Reddit][11]. 

> "We will be creating another multisig for you that has the same settings as your old multisig but with the vulnerability removed and we will return your funds to you there."

The company has just released an updated version of the Parity software fixing the vulnerability.

[1]: https://2.bp.blogspot.com/-93QYaISRGkE/WXBeuAaun4I/AAAAAAAAtr4/vxuuACWcROIHm9cgpXwGbNseanJcJ4-igCLcBGAs/s1600/ethereum-cryptocurrency-hacking.png "ethereum-cryptocurrency-hacking"
[2]: http://thehackernews.com/2017/07/ethereum-cryptocurrency-heist.html
[3]: https://thehackernews.com/2017/07/bitcoin-ethereum-cryptocurrency-exchange.html#
[4]: https://blog.parity.io/security-alert-high-2/
[5]: https://3.bp.blogspot.com/-pfkQbIe4qzI/WXBkYVPvR8I/AAAAAAAAtsE/zF1pE3OEFrQzT31eZa4XvlKNQSxCxbsgACLcBGAs/s1600/ethereum-cryptocurrency-hack.png "ethereum-cryptocurrency-hack"
[6]: https://etherscan.io/address/0xb3764761e297d6f121e79c32a65829cd1ddb4d32#internaltx
[7]: https://twitter.com/maraoz/status/887755889897295872
[8]: https://twitter.com/ParityTech/status/887747980719206401?ref_src=twsrc%5Etfw&ref_url=https%3A%2F%2Fwww.theregister.co.uk%2F2017%2F07%2F20%2Fus30_million_below_parity_ethereum_bug_leads_to_big_coin_heist%2F
[9]: https://4.bp.blogspot.com/-HpIS3BCU664/WXBk7gNJpSI/AAAAAAAAtsI/Ca7eUEHQdNwNhrc2UnWH0LsYEKdBg1nMwCLcBGAs/s1600/ethereum-cryptocurrency-hack.png "ethereum-cryptocurrency-hack"
[10]: https://etherscan.io/address/0x1dba1131000664b884a1ba238464159892252d3a
[11]: https://www.reddit.com/r/ethereum/comments/6obofq/a_modified_version_of_a_common_multisig_had_a/?st=j5c4t0ri&sh=9867ba0e
👍  , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,
properties (23)
post_id7,711,256
authorshotokanzh
permlinkhackers-stole-usd32-million-in-ethereum-3rd-heist-in-20-days
categoryhacking
json_metadata"{"app": "steemit/0.1", "format": "markdown", "links": ["http://thehackernews.com/2017/07/ethereum-cryptocurrency-hacking.html", "http://thehackernews.com/2017/07/ethereum-cryptocurrency-heist.html", "https://thehackernews.com/2017/07/bitcoin-ethereum-cryptocurrency-exchange.html#", "https://blog.parity.io/security-alert-high-2/", "https://etherscan.io/address/0xb3764761e297d6f121e79c32a65829cd1ddb4d32#internaltx", "https://twitter.com/maraoz/status/887755889897295872", "https://twitter.com/ParityTech/status/887747980719206401?ref_src=twsrc%5Etfw&ref_url=https%3A%2F%2Fwww.theregister.co.uk%2F2017%2F07%2F20%2Fus30_million_below_parity_ethereum_bug_leads_to_big_coin_heist%2F", "https://etherscan.io/address/0x1dba1131000664b884a1ba238464159892252d3a", "https://www.reddit.com/r/ethereum/comments/6obofq/a_modified_version_of_a_common_multisig_had_a/?st=j5c4t0ri&sh=9867ba0e"], "image": ["https://2.bp.blogspot.com/-93QYaISRGkE/WXBeuAaun4I/AAAAAAAAtr4/vxuuACWcROIHm9cgpXwGbNseanJcJ4-igCLcBGAs/s1600/ethereum-cryptocurrency-hacking.png"], "tags": ["hacking", "security", "news", "cryptocurrency", "ethereum"]}"
created2017-07-20 12:24:09
last_update2017-07-20 12:24:09
depth0
children3
net_rshares76,746,868,785
last_payout2017-07-27 12:24:09
cashout_time1969-12-31 23:59:59
total_payout_value0.270 SBD
curator_payout_value0.046 SBD
pending_payout_value0.000 SBD
promoted0.000 SBD
body_length4,229
author_reputation47,254,638,423
root_title"Hackers Stole $32 Million in Ethereum; 3rd Heist in 20 Days"
beneficiaries[]
max_accepted_payout1,000,000.000 SBD
percent_steem_dollars10,000
author_curate_reward""
vote details (54)
@twitterbot · 
### ![maraoz](https://pbs.twimg.com/profile_images/765584710147932160/KoYjrlM6_normal.jpg) **[Manuel Aráoz](https://twitter.com/@maraoz/status/887755889897295872)** tweeted @ 19 Jul 2017 - 19:27 UTC

> Multisig wallets affected by this hack: 
- Edgeless Casino (@edgelessproject)
- Swarm City (@swarmcitydapp)
- æternity blockchain (@aetrnty)


### ![ParityTech](https://pbs.twimg.com/profile_images/819562277028380674/DeoxgzGg_normal.jpg) **[Parity Technologies](https://twitter.com/@ParityTech/status/887747980719206401)** tweeted @ 19 Jul 2017 - 18:56 UTC

> IMPORTANT: SECURITY ALERT: [blog.parity.io/security-alert…](https://t.co/h5vc0KwAxS) Move funds in multi-sig wallet created in Parity Wallet 1.5 or higher immediately.


###### *Disclaimer: I am just a bot trying to be helpful.*
properties (22)
post_id7,711,323
authortwitterbot
permlinkre-hackers-stole-usd32-million-in-ethereum-3rd-heist-in-20-days-20170720t122500
categoryhacking
json_metadata{}
created2017-07-20 12:25:00
last_update2017-07-20 12:25:00
depth1
children0
net_rshares0
last_payout2017-07-27 12:25:00
cashout_time1969-12-31 23:59:59
total_payout_value0.000 SBD
curator_payout_value0.000 SBD
pending_payout_value0.000 SBD
promoted0.000 SBD
body_length790
author_reputation2,789,687,494,229
root_title"Hackers Stole $32 Million in Ethereum; 3rd Heist in 20 Days"
beneficiaries[]
max_accepted_payout1,000,000.000 SBD
percent_steem_dollars10,000
@cheetah · 
Hi! I am a robot. I just upvoted you! I found similar content that readers might be interested in:
https://www.storminfosec.com/2017/07/20/hackers-stole-32-million-in-ethereum-3rd-heist-in-20-days/
properties (22)
post_id7,711,411
authorcheetah
permlinkcheetah-re-shotokanzhhackers-stole-usd32-million-in-ethereum-3rd-heist-in-20-days
categoryhacking
json_metadata{}
created2017-07-20 12:26:18
last_update2017-07-20 12:26:18
depth1
children0
net_rshares0
last_payout2017-07-27 12:26:18
cashout_time1969-12-31 23:59:59
total_payout_value0.000 SBD
curator_payout_value0.000 SBD
pending_payout_value0.000 SBD
promoted0.000 SBD
body_length197
author_reputation750,854,098,279,735
root_title"Hackers Stole $32 Million in Ethereum; 3rd Heist in 20 Days"
beneficiaries[]
max_accepted_payout1,000,000.000 SBD
percent_steem_dollars10,000
@steemitboard · 
Congratulations @shotokanzh! You have completed some achievement on Steemit and have been rewarded with new badge(s) :

[![](https://steemitimages.com/70x80/http://steemitboard.com/notifications/posts.png)](http://steemitboard.com/@shotokanzh) Award for the number of posts published

Click on any badge to view your own Board of Honor on SteemitBoard.
For more information about SteemitBoard, click [here](https://steemit.com/@steemitboard)

If you no longer want to receive notifications, reply to this comment with the word `STOP`

> By upvoting this notification, you can help all Steemit users. Learn how [here](https://steemit.com/steemitboard/@steemitboard/http-i-cubeupload-com-7ciqeo-png)!
properties (22)
post_id7,724,654
authorsteemitboard
permlinksteemitboard-notify-shotokanzh-20170720t145732000z
categoryhacking
json_metadata"{"image": ["https://steemitboard.com/img/notifications.png"]}"
created2017-07-20 14:57:30
last_update2017-07-20 14:57:30
depth1
children0
net_rshares0
last_payout2017-07-27 14:57:30
cashout_time1969-12-31 23:59:59
total_payout_value0.000 SBD
curator_payout_value0.000 SBD
pending_payout_value0.000 SBD
promoted0.000 SBD
body_length698
author_reputation38,705,954,145,809
root_title"Hackers Stole $32 Million in Ethereum; 3rd Heist in 20 Days"
beneficiaries[]
max_accepted_payout1,000,000.000 SBD
percent_steem_dollars10,000
Help/Feedback