Author

Topic: Multichain recovers $2.6M stolen funds (Read 70 times)

legendary
Activity: 1932
Merit: 4602
Buy on Amazon with Crypto
July 14, 2023, 06:24:49 AM
#3
Multichain stops working
https://twitter.com/MultichainOrg/status/1679768407628185600
"1. On May 21, 2023, Multichain CEO Zhaojun was taken away by the Chinese police from his home and has been out of contact with the global Multichain team ever since. The team contacted the MPC node operators and learned that their operational access keys to MPC node servers had been revoked. Furthermore, these MPC node servers, like all other ordinary servers, were actually running under Zhaojun's personal cloud server account. No member of the team has access to Zhaojun's personal cloud server account, so nobody can log on to these MPC servers.
.."
legendary
Activity: 3276
Merit: 1029
Leading Crypto Sports Betting & Casino Platform
February 19, 2022, 09:24:12 AM
#2
Multichain announcement of the issue encouraged other hackers to have knowledge of the issue and subsequently tried and exploited some more funds,
We have learned a lesson from this case if sometimes being transparent was not good especially when it was about the problem in our platform. The hacker was exploring the vulnerability and he got it. that's why hackers are able to steal money from the platform. An important less must be learned from this case although the platform was reimbursing all of its users it's good knowledge.


however, great news that some part of the stolen funds has been recovered and users will be refunded and hope the rest will be too, So what could they have done better than the way they put out the information to their users?  [/size]
I would not be surprised to see that happened caused by the company must have reserved funds and i guess multichain was using it to recover the lose caused by this hacked case.
hero member
Activity: 1344
Merit: 565
February 19, 2022, 07:38:21 AM
#1
We could remember around January 10th this tweet that went out @dedaub tweeter account identifying the "phantom functions" code pattern, which would have led to likely the largest crypto hack ever, even though they alerted Multichain about two vulnerabilities in its liquidity pool and router contracts, Cointelegraph reported, the warning announcement encouraged more hackers to try the exploit, resulting in losses exceeding $3 million.

“Out of the 1,889.6612 WETH and 833.4191 AVAX stolen funds, the team was able to recover nearly 50% of the total stolen funds, 912.7984 WETH and 125 AVAX (worth nearly $2.55 million and $10,000 respectively)” and looking at a compensation plan for eligible investors.

Multichain announcement of the issue encouraged other hackers to have knowledge of the issue and subsequently tried and exploited some more funds, however, great news that some part of the stolen funds has been recovered and users will be refunded and hope the rest will be too, So what could they have done better than the way they put out the information to their users?  

Jump to: