South Korean exchange GDAC loses $13M in crypto assets to hackers

Share This Post

 4 0 3 w, tags: south korean crypto - images.unsplash.com
4 0 3 w – images.unsplash.com

On April 9, hackers targeted South Korean crypto exchange GDAC, stealing around $13.9 million worth of various cryptocurrencies by exploiting the exchange’s hot wallet. The heist resulted in the theft of funds equivalent to about 23 percent of the exchange’s total assets.

The stolen cryptocurrencies included 60.8 Bitcoin, 350.5 Ethereum, 10 million WEMIX tokens and 220,000 USDT — a stablecoin with a value tied to the U.S. dollar.

The blockchain intelligence platform ArkhamIntel revealed on Monday that the attacker had already moved roughly 461 ETH to the crypto-mixing platform Tornado Cash.

Per an announcement by CEO Han Seunghwan on the same day, GDAC suspended all deposits and withdrawals following the incident.

Seunghwan said that the exchange could not provide a definite timeline for the resumption of withdrawals. The platform immediately suspended and blocked the exchange’s wallet system and associated servers.

GDAC also collaborated with domestic and foreign cryptocurrency exchanges and issuers to prevent the stolen coins from being laundered. The Korean exchange reported the incident to the police, the Korea Internet & Security Agency (KISA) and the Korea Financial Intelligence Unit (FIU).

GDAC reported that the stolen assets came from their hot wallet and were transferred to an unidentified cryptocurrency wallet by the hackers. Cryptocurrency exchanges use hot wallets to store some of their funds, enabling swift trading and withdrawals. Although these wallets have advantages, they also carry risks.

Unlike cold wallets that keep assets offline, hot wallets are linked to the internet, making them susceptible to cyberattacks.

Several crypto industry hacks

Over the past year, multiple significant hacks and exploits have targeted various crypto platforms. One of these was the hack of Crypto.com on January 17, 2022, in which the platform lost over $15 million.

The attacker bypassed two-factor authentication and stole users’ Bitcoin or Ether. Despite initial denials from CEO Kris Marszalek, the company eventually acknowledged the hack and announced plans to transition to “multi-factor authentication” to prevent future exploits.

Also, in January 2022, the Qubit QBridge platform was hacked, leading to a loss of $80 million. The attacker used a smart contract flaw on the platform, backed by Binance, to mint wrapped ether tokens without depositing funds.

As one of the consequences, Qubit had to downsize its team and change its structure to a decentralized autonomous organization (DAO).

In February last year, the crypto platform Wormhole lost $325 million in a smart contract heist. The hacker took advantage of the smart contract vulnerabilities on the Solana-to-Ethereum bridge and created wrapped ether tokens without depositing any collateral.

Jump Crypto, the venture capital firm responsible for Wormhole, replenished the stolen funds to ensure that Solana-based platforms affected by the attack remain financially stable.

According to crypto data provider DeFi Llama, Wormhole now controls assets worth more than $480 million after rebranding its bridge as Portal.

The Axie Infinity Ronin Bridge sustained the largest fiat currency cryptocurrency hack in March last year, resulting in a loss of $625 million. The hackers gained control of most of the cryptographic keys securing the bridge.

They managed to steal four of the nine keys after an Axie developer clicked on a fake job offer PDF. Since the attack, the Ronin Bridge has reopened with extra validators, but the game’s popularity has declined.

In April 2022, a hack on the decentralized finance protocol Beanstalk Farms led to a loss of $182 million. The attacker employed a method known as a “flash loan.” The flash loan is where funds are borrowed and repaid in a single transaction to gather enough assets to control the stablecoin’s governance protocol.

Bitcoin

Bitcoin is a protocol which implements a highly available, public, permanent, and decentralized ledger. In order to add to the ledger, a user must prove they control an entry in the ledger. (wikipedia)

Jeju Naval Base controversy

There was much controversy during the construction of Jeju Naval Base , (wikipedia)

spot_img

Related Posts

Immutable, SuperDuper collaborate to launch Overlord-based Web3 game

Immutable and SuperDuper have partnered to create a game...

Rated-R mafia’s SinVerse metaverse unveils beta version to public

Since its debut at the 2021 GITEX conference, the...

Valve cracks down on CS:GO traders, bans millions of dollars worth of skins

On Wednesday, Valve had community-banned over 40 Counter-Strike: Global...

ORB brings Web3 integration to gaming on Tezos blockchain

ORB is a platform on Tezos blockchain for game...

Ubisoft unveils first blockchain game in collaboration with Oasys

In a significant step toward becoming a leader in...

Exploring the potentials of metaverse and crypto convergence

The metaverse has gained rising popularity recently. It is...