Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don’t)

share save 171 16 - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)

Coindesk | Wolfie Zhao | June 20, 2018

bithumb Korean exchange hacked - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)On Wednesday, roughly 35 billion Korean won (around $31 million) in cryptocurrency was stolen by hackers from the South Korea-based exchange Bithumb.

Although the breach may not be as severe as the $530 million hack of the Coincheck exchange earlier this year, the fact that Bithumb now ranks as the sixth biggest trading venue in the world still marks it as a notable, and worrying, incident.

While more details about the heist have surfaced in the hours following the event's confirmation, providing a glimpse into Bithumb's internal operations, some important questions about the hack still remain unanswered.

Here's what we know about the hack so far, and some details we still don't.

What we know

XRP compromised

While Bithumb has not yet disclosed full details of the stolen coins, news emerged following the hack that XRP, the native token of the XRP ledger and the world's third-largest cryptocurrency, has been targeted, according to a report from CoinDesk Korea.

Based on data from CoinMarketCap, Bithumb accounted for 10 percent of the global trading volume of XRP over the last 24 hours, with a total of $32 million-worth changing hands.

Bithumb has so far not responded to CoinDesk's request for comment.

IT improvement failed

While Bithumb officially confirmed the breach early Wednesday morning local time, it appears that security issues were already drawing attention from the exchange at least several days ago.

According to a follow-up report from CoinDesk Korea, Bithumb conducted a security enhancement checkup on June 16, just days before the confirmed hack.

The exchange explained at the time:

"Recently, the number of unauthorized access attempts has increased. As such, an urgent server checkup was conducted to strengthen the security of all system."

At the same time, Bithumb also started moving users' assets to a cold wallet to store cryptocurrencies in a more secure offline environment.

The CoinDesk Korea report indicated that the hack comes at a time when Bithumb is spending 10 billion won, or around $9 million dollars annually on security measures. Another report from Yonhap further suggests that Bithumb beefed up its security measures by implementing so-called "5.5.7 regulations" last month.

Under this requirement, at least 5 percent of a financial institution's staff should be IT specialists. Among those, 5 percent should focus on information security, while at least 7 percent of the firm's total budget should be on information security.

See:  The growing cost of cybersecurity

The report from Yonhap stated that 21 percent of Bithumb's employees are technology specialists as of May, and 10 percent of those are responsible for information security. Further, about eight percent of the annual spending budget is used for data protection activities.

Although Bithumb appears to have fulfilled the 5.5.7 requirements, the report said the fact that it has 300 employees means it may not be able to cope with the increasing amount of trading volume and user numbers on its platform.

Government weighs in

An hour before Bithumb confirmed the hack on its website and official Twitter account, the exchange reported the case to the Korea Internet & Security Agency (KISA), a government organization that supervises internet and cybersecurity issues in the country.

An official from KISA said a dedicated analysis team is currently in the process of investigation the hack. As of press time, the agency has not yet disclosed any details from its investigation so far.

Bithumb to refund users

Immediately after announcing the hack, Bithumb confirmed it will pay back victims using its own reserves.

Industry experts later weighed in, including bitcoin pioneer Charlie Shrem, who praised the move despite the unwelcome incident.

"Bithumb hacked for $30 million but covering all losses. Out industry is getting better and stronger," he tweeted.

In addition, litecoin creator Charlie Lee also commented that he believes the smart move is to "keep on exchange coins that you are actively trading. It's best to withdraw right after trading."

This is not the first time that Bithumb was reportedly hacked. As previously reported by CoinDesk, the platform was compromised last year with as many as 30,000 users impacted.

At that time, Bithumb later announced that it would repay each victim with 100,000 Korean won each, an amount worth about $85.

Bitcoin price dips by $200 

According to data from CoinDesk, the price of bitcoin dropped by nearly $200 to a daily low so far of $6,561 an hour after Bithumb initially published the statement. As of press time, the price had bounced back to $6,640.

In addition, as Bithumb has so far only suspended asset deposits and withdrawals, trading activity on the exchange actually appears to be increasing since the news broke. Based on data from CoinMarketCap, 24-hour trading volume was initially seen at around $350 million at the time of the news and later climbed to $380 million around noon local time on Wednesday.

Check out:  Prices Aside, Crypto’s Tech Stack Is Steadily Improving

As of press time, Bithumb still remains the sixth largest platform globally.

What we don't know

Extent of the breach

It appears that XRP is one of the assets stolen in the hack, yet it's still unclear at the moment if other assets have been taken and in what quantities. In addition, it's also not clear the number of users on Bithumb that have been impacted.

In its announcement, Bithumb refrained disclosing these details, adding that it may disclose the hacked tokens today. It has not made any statement on that at press time.

Further, it's not publicly known at this time which wallet addresses the hacked cryptocurrencies have been sent to, or whether any have been liquidated or not.

Currently, there are over 37 cryptocurrency assets on Bithumb that are available for trading against the Korean won. Among them, EOS and TRON together account for over half of the total trading volume on Bithumb, at 31 and 22 percent, respectively.

Continue to the full article --> here

 

latest news - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)

 

Attend One or All 8 Weekly FFCON20 Sessions! Links:  Program | Speakers | Experience | Vote in Fintech Draft Attend Week 1:  Thursday, July 9 from 1:45PM - 4:45PM EDT Scaling Fintech Funding, Innovation and Competition Attend this Session for $25! (Expires July 7 midnight) The National Crowdfunding & Fintech Association (NCFA Canada) is a financial innovation ecosystem that provides education, market intelligence, industry stewardship, networking and funding opportunities and services to thousands of community members and works closely with industry, government, partners and affiliates to create a vibrant and innovative fintech and funding industry in Canada. Decentralized and distributed, NCFA is engaged with global stakeholders and helps incubate projects and investment in fintech, alternative finance, crowdfunding, peer-to-peer finance, payments, digital assets and tokens, blockchain, cryptocurrency, regtech, and insurtech sectors. Join Canada's Fintech & Funding Community today FREE! Or become a contributing member and get perks. For more information, please visit: www.ncfacanada.org ...
Read More
FFCON20 Digital RISE image 1 - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)
Competition Markets Authority | Release | Jul 1, 2020 The CMA is calling on the government to introduce a new pro-competition regulatory regime to tackle Google and Facebook’s market power. The dynamic nature of digital advertising markets and the types of concerns identified by the Competition and Markets Authority (CMA) in its market study are such that existing laws are not suitable for effective regulation. It is therefore recommending a new pro-competition regulatory regime to govern the behaviour of major platforms funded by digital advertising, like Google and Facebook. This recommendation to government is the result of a year-long examination of the markets. The CMA used its statutory information gathering powers to lift the lid on how advertising revenue drives the business model of major platforms. The CMA’s concerns UK expenditure on digital advertising was around £14bn in 2019, equivalent to about £500 per household. About 80% of this is earned by just 2 companies: Google and Facebook. Google enjoys a more than 90% share of the £7.3 billion search advertising market in the UK, while Facebook has a share of over 50% of the £5.5 billion display advertising market. Google’s revenue per search has more than doubled since 2011, ...
Read More
big tech and competition - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)
NCFA | Team FFCON20 | July 6, 2020 We have great thought leaders and authors that will be speaking at FFCON20 (also some prizes!) Check these out and stay at the forefront of digital change in financial services: Banking in today’s day and age has evolved rapidly, especially in the recent decade. With the rise in digital and open banking, new opportunities are sprouting up and disrupting the traditional ways of banking. Prominent banks such as JPMorgan Chase (USA) and ING (Europe) are fully aware of this and have adopted radical new approaches to best adapt and survive the changing environment. Voted one of the most influential people in banking by The Financial Brand, Chris Skinner provides detailed interviews with 5 banks in Doing Digital and shares his commentary on the secrets to thrive in the new era of finance and technology. Get DOING DIGITAL book now See Chris Skinner speak at FFCON20 Week 3:  July 23 Sustainable Finance:  Purpose Driven Finance The financial services industry has been evolving at unprecedented speeds with increasing competition from both within and outside the industry, notably from entrepreneurial FinTech start-ups and non-financial technology-based companies. Some of these entrants are looking to replace the ...
Read More
FFCON speaker author books - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)
NCFA | Team FFCON20 | Jul 6, 2020 Buy 2 or more Tickets Save 40% (Available until July 7 @11:59pm EST) Time remaining for this deal ...
Read More
FFCON Week 1 Agenda resize - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)
NCFA | Samuel He, Market Research Analyst Intern | July 3, 2020 Today, millions live paycheck to paycheck, struggling to get by financially. This lack of resources and a poor credit score makes getting a loan difficult. And the options that are available, make the problem worse with high rates and aggressive rules. Traditional payday loans use aggressive deadlines and lump sum payments that often results in the customer spiraling into a debt trap. The challenge for the customer is accessibility to resources and the opportunity to improve their credit capacity for future, cheaper loans. Founded by Samir Issa, MoneyMates is an alternative lender that prioritizes the welfare of its customers by offering expert guidance not just on getting the loan, but how to improve their credit situation. See:  Shopify expands capital lending program to help Canadian merchants weather COVID-19 They do this by offering customers an extended repayment period of up to two months rather than the typical two weeks. In the event of a missed payment, MoneyMates will work with the customer on a solution to avoid additional fees and penalties. MoneyMates has also added a unique savings feature to help borrowers accrue savings. Customers are given the ...
Read More
P2P lending - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)
IMF Blog | By Ulric Eriksson von Allmen, Purva Khera, Sumiko Ogawa, and Ratna Sahay | July 1, 2020 The COVID-19 pandemic could be a game changer for digital financial services. Low-income households and small firms can benefit greatly from advances in mobile money, fintech services, and online banking. Financial inclusion as a result of digital financial services can also boost economic growth. While the pandemic is set to increase use of these services, it has also posed challenges for the growth of the industry’s smaller players and highlighted unequal access to digital infrastructure. Several actions will need to be taken to ensure maximum inclusion going forward. Low-income households and small firms can benefit greatly from advances in mobile money, fintech services and online banking. The shift towards digital financial services was already helping societies advance financial inclusion before the pandemic started, benefiting many low-income households and small firms with typically little access to traditional financial institutions. Lockdowns and social distancing are accelerating the use of digital financial services, just as the SARS epidemic in 2003 hastened China’s launching of digital payments and e-commerce. See:  Cambridge launches the Global Alternative Finance Industry Benchmark & Covid-19 Rapid Assessment Survey in Partnership ...
Read More
financial inclusion and fintech - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)
Bank of Canada | Release | Jun 30, 2020 The Bank for International Settlements (BIS) and the Bank of Canada announced today they will be launching a BIS Innovation Hub centre to advance fintech innovation within the central banking community. The centre will open in Toronto within two years and is one of four locations scheduled to open in North America and Europe. This partnership will advance the Bank’s understanding of the digital economy and the technological transformation of financial services. It builds on the Bank’s existing research and collaboration with partners in the central bank and technology communities on digital currencies and fintech. “We’re proud to host a BIS innovation centre in Toronto and to strengthen our collaboration with other central banks and the private sector on digital technologies,” said Bank of Canada Governor Tiff Macklem. “This partnership will allow the Bank to continue its work on behalf of Canadians to explore how technology will shape the future of our economy and financial system.” See:  Bank of Canada Speech: Money and Payments in the Digital Age Growth in Canadian FinTechs Having Impact on Canada’s Banking Landscape Open Banking In Canada: Navigating The Future Of Money  “Toronto is an ideal location ...
Read More
Bank of Canada building - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)
Consilium Crypto | Austin Hubbell | Jun 29, 2020 TORONTO, June 29, 2020 /PRNewswire/ - Consilium Crypto, provider of Institutional-grade trading & risk management tools for digital asset markets, today launches its Liquidity Routing System for cryptocurrency exchanges, Consilium ORS. This product has multiple one of a kind features built in, designed to meet the needs of high-volume crypto traders (hedge funds, miners, OTC trading desks). High-volume clients can save 10% and more on transactions of select coins including Ethereum, Litecoin and Zcash. Consilium ORS also significantly improves pricing on Bitcoin and other digital assets, spreading orders across multiple exchanges to avoid disrupting prices, enabling users to get more for their money. Furthermore, there is no fixed cost for this service. Costs are a function of the trader's savings. If customers don't save on a transaction, they pay $0! See:  Fintech Fridays EP40: Why Bitcoin Exists and Education for the Masses We offer a streamlined Liquidity Routing System that does not require custody of funds, a new concept in this type of trading. Consilium Crypto users keep complete control over all their assets, from quote to execution. All trading is done directly between the user and the exchange, reducing the risk ...
Read More
order recommendation system by Consilium Crypto - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)
FundThrough Blog | Jun 26, 2020 TORONTO – FundThrough, North America’s leading invoice funding solution for small businesses, has announced it will provide $10 million in free funding for clients as the economy reopens from COVID-19. The company announced it as part of a broader initiative to help small businesses, who invoice their customers and wait to for invoice payments, get back on their feet in the wake of the COVID-19 economic shutdown and has expedited this capital commitment for SMBs looking for a practical source of funding. The Toronto-based Fintech company will provide working capital to small businesses in exchange for outstanding customer invoices, based on the creditworthiness of the payor. Clients that sell goods and services to larger customers and need working capital quickly are encouraged to apply. “We are proud to announce this initiative to help kick start the North American economy and ensure that companies get paid immediately for the work they have completed and the products they have delivered,” said FundThrough Co-Founder and CEO Steven Uster. “Large companies often stretch out their payment terms for their suppliers. We are levelling the playing field so that suppliers no longer have to act as a bank for ...
Read More
small businesses are the backbone - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)
Finance Magnates | Matthew Unger | Jun 20, 2020 What will have the biggest impact? During the last decade, financial technology has improved dramatically, moving from mainframe trading computers and COBOL to mobile banking and blockchains. Never before have we been at such a critical inflection point as money, contracts, and regulations are combined into almost infinitely scalable code. Remote operations and contactless procedures are becoming the new normal, those financial services providers who previously resisted digitization now find themselves in a race for survival. As with any “gold rush”, this frenzy brings new opportunities for exploitation, fraud, theft, etc. One only has to review the Wild West scenarios that played out in the cryptocurrency sector to recognize the potential for fintech to be used to either create or extract value. While some made fortunes in the early crypto days, others lost a lot. Hotter than the cryptocurrency and ICO wave of 2015-2017, fintech platforms are growing faster than ever before. See:  NCFA Announces Updated Virtual Interactive Programme for FFCON20 DIGITAL, the 6th annual Fintech and Financing Conference RegTech: The Financial Industry Disruptor Within the realm of fintech exist neo-banks, challenger banks, incumbents, and disruptors, each with unique threats, opportunities, ...
Read More
regulatory tech fintech trends - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)

 


NCFA Jan 2018 resize - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)The National Crowdfunding & Fintech Association of Canada (NCFA Canada) is a cross-Canada non-profit actively engaged with cryptocurrency, blockchain, crowdfunding, alternative finance, fintech, P2P, ICO, and online investing stakeholders globally. NCFA Canada provides education, research, industry stewardship, services, and networking opportunities to thousands of members and subscribers and works closely with industry, government, academia, community and eco-system partners and affiliates to create a strong and vibrant crowdfunding and fintech industry. Join Canada's Fintech & Funding Community today FREE! Or become a contributing member and get perks. For more information, please visit: ncfacanada.org

share save 171 16 - Bithumb $31 Million Crypto Exchange Hack: What We Know (And Don't)