At 11:20 pm on February 21, Beijing time, ZachXBT published an article revealing a shocking crypto industry: "A suspicious outflow of funds was detected by Bybit, with a scale of up to US$1.46 billion ”. This incident has attracted widespread attention throughout the crypto field. According to monitoring data from blockchain security compliance company Beosin Trace, Bybit did encounter an unprecedented security incident, causing about $1.44 billion in funds to be withdrawn. The stolen assets include:

401,347 ETHs worth US$1.12 billion;

90,376 stETH, worth $253.16 million;

15,000 cmETH, worth $44.13 million;

8,000 mETH, worth $23 million.

ETH-related assets of over $1.4 billion may be the largest ever in the crypto field The amount of money stolen by security incidents has further aggravated the market's concerns about ETH price performance and the security of Bybit assets.

The subsequent investigation revealed the specific details of Bybit's attack. Bybit's co-founder Ben Zhou confirmed the incident immediately, saying that Bybit's official cold wallet was hacked and began to urgently deal with related security issues.

Beosin security team analyzed that the attack method of this incident was similar to WazirX, both of which Through the front-end UI fraud, the multiple wallets signed malicious content was signed, and the logic of multiple wallets was tampered with to implement the contract, resulting in the funds for multiple wallets being transferred out.

Beosin Trace tracked that the funds are divided into 10,000 ETH, a group of deposited in more than 40 Ethereum addresses. All hacker addresses have been added to the Beosin tag library. KYT will alert all funds transfers involving hacker addresses.

After the Beosin security team analyzed the address where the hacker launched the initial attack, it was found that the handling fee for the address came from Binance. /p>

The corresponding 4 Binance exchange withdrawal transactions hash is:

0x64953fc1432bf106f5e8d6b0927a39130865fec013d8403bba8fc4382515884c p>

0xb9f9e43dc23bdb7b231925dc01e828990d3f84b8ad3305e83ffb6848711f871c

0xd6d871deece52f15e3f2c523dffad4b85c63125d72e4de702445a654de5ce100

0x0afa81cc9c0b0bfc4a9cd46c33bcdecf58199513e7c051e5a9df1617c211f69f

0:7 on the 22nd, Bybit Ben Zhou, a Lianchuang report, responded: "Even if the losses caused by this hacker attack cannot be recovered, Bybit's assets are still guaranteed 1:1 and we can bear the losses. ”

At 8:54 this morning, Bybit Lianchuang and CEO Ben Zhou posted on the X platform: "Since the hacker attack (10 hours ago), Bybit After experiencing the most withdrawals we have experienced, we have received over 350,000 withdrawal requests in total, and so far, there are about 2,100 withdrawal requests pending. Overall, 99.994% of withdrawal requests have been successfully completed. If your withdrawal is completed, please leave a message here. Although we may have encountered the worst hacking of any platform in history (including banking, encryption, finance), all Bybit features and products are still functioning properly. The entire team stayed up all night, processing and answering customer questions and concernscut. All staff were dispatched. Don't worry, we are with you. ”

At 10:51 a.m., Ben Zhou posted on the X platform: "It has been 12 hours since the worst hacker attack in history. All withdrawals have been processed. Our withdrawal system is now fully back to normal speed, and you can withdraw any amount without any delay. Thank you for your patience, we are deeply sorry for this. Bybit will release a complete incident report and security measures in the coming days. I will also personally inform you of any new updates. Thank you for helping and supporting our customers, friends and partners in this painful 12 hours. The real work has just begun. ”

Bybit's experience reflects the entire The crypto industry is fragile in security protection. The crypto asset market has always faced great security risks due to its decentralization and the operating model of the exchange itself. As the center of crypto assets, centralized exchanges have direct security issues. Related to the security of users' assets and the stability of the entire market.

In fact, security incidents in the crypto industry are common. Historically, many exchanges and platforms have Have encountered similar hacking attacks, and even more serious incidents of theft of funds. For example, Mt. The explosive incident of Gox, or theft cases of exchanges such as WazirX and KuCoin in recent years, have shocked the crypto market. The occurrence of the Bybit incident once again sounded the alarm for the industry.

Bybit's hacking incident this time is not only a technical lesson from the encryption platform, but also a profound warning to the entire encryption industry. The security issues of the exchange are directly related to the health of the market. Development, while all parties in the industry still have a lot of work to do in strengthening security protection and improving technical level. For users, improving their self-risk awareness and choosing a platform with higher security for transactions will also be future digital asset investment A link that cannot be ignored.