HomeSecurity OperationsKronos Research Loses $25 Million to Hacker via Compromised API Keys

Kronos Research Loses $25 Million to Hacker via Compromised API Keys

Published on

spot_img

Kronos Research, a trading firm, was recently the victim of a cyberattack that resulted in the theft of $25 million by an unauthorized entity who accessed the firm’s compromised API keys. The attack led to the immediate suspension of trading services on the platform. In response to the security breach, Kronos Research has initiated internal investigations to identify the perpetrator and recover the stolen assets. While the trading services remain suspended indefinitely, the firm remains confident in the positive outcome of their efforts.

Despite the security incident, Kronos Research has assured stakeholders that the stolen amount does not constitute a significant portion of the company’s assets and is committed to resuming normal operations expeditiously. However, blockchain investigator ZachXBT estimates that the total damage incurred by Kronos Research could be upwards of $25 million (12,800 ETH). The investigator revealed that the stolen funds were transferred to six different crypto wallet addresses, emphasizing the sophisticated nature of the cyberattack.

The close affiliation between Kronos Research and Woo X, an exchange that relies significantly on Kronos for liquidity, led to disruptions on Woo X due to the security incident. The exchange, which was a key market maker for Woo X, accounting for up to 40% of the total spot and futures trading liquidity, faced a shortage of funds and was forced to suspend trading for specific asset pairs in response to Kronos’s trading halt. Woo X acted swiftly to safeguard its users and maintain the integrity of its platform.

Despite the challenges posed by Kronos’s trading pause, Woo X reassured its users that their funds remained secure and engaged in discussions with alternative market makers to support the exchange’s operations. The successful establishment of communication with alternative market makers enabled Woo X to resume spot and perpetual trading, as well as withdrawals, marking a significant step towards normalcy.

The cyberattack on Kronos Research and the subsequent disruptions on Woo X serve as a stark reminder of the risks associated with the cryptocurrency industry. A recent report by CertiK revealed that Q3 2023 witnessed the highest losses in the cryptocurrency industry, exceeding $700 million due to various security incidents. The surge in digital asset compromises was attributed to prevalent techniques such as private key exploits, exit scams, and oracle manipulation.

Furthermore, Beosin EagleEye, the security monitoring platform of Beosin, recorded a total of 23 security incidents in October 2023, resulting in substantial losses totaling approximately $51.61 million. Hacker attacks, rug pull incidents, and phishing scams significantly contributed to the overall figure, highlighting the multifaceted nature of threats within the crypto space.

These developments prompt investors to exercise caution and diligence when navigating the cryptocurrency landscape, emphasizing the need for robust security measures and risk mitigation strategies in the face of evolving cyber threats. As the industry continues to grapple with security challenges, stakeholders are urged to prioritize the protection of digital assets and remain vigilant in the face of potential vulnerabilities.

Source link

Latest articles

Open House: How can we prevent cybercrime in the city?

In today's digital age, the threat of cybercrime looms large, affecting individuals, businesses, and...

Australia Enacts Its First National Cyber Legislation

Australia has made a significant step towards strengthening its cybersecurity measures with the introduction...

18 Individuals Charged for Wide Manipulation of Cryptocurrency Markets

In a groundbreaking development, 18 individuals and entities have been charged with engaging in...

DDoS and Data Breach Emergency

The cybersecurity crisis that the Internet Archive faced recently has caused both its Archive.org...

More like this

Open House: How can we prevent cybercrime in the city?

In today's digital age, the threat of cybercrime looms large, affecting individuals, businesses, and...

Australia Enacts Its First National Cyber Legislation

Australia has made a significant step towards strengthening its cybersecurity measures with the introduction...

18 Individuals Charged for Wide Manipulation of Cryptocurrency Markets

In a groundbreaking development, 18 individuals and entities have been charged with engaging in...
en_USEnglish