New Analysis Suggests $16 Million in Crypto Stolen in Cryptopia Hack

Published at: Jan. 22, 2019

As much as $16 million worth of Ethereum (ETH) and ERC20 tokens were stolen in the recent hack of New Zealand exchange Cryptopia, according to an analysis from blockchain infrastructure firm Elementus, Jan. 20.

Elementus’ findings and analysis were published under a week after Cryptopia first publicly announced its detection of the breach. As reported, the exchange had initially informed the public that the platform was undergoing unscheduled maintenance, before avowing that a hack incurring “significant”— but unspecified — losses had occurred.

According to Elementus, data on the Ethereum public blockchain indicates that funds began to be siphoned from Cryptopia’s two core wallets — one holding ETH, the other tokens — on the morning of Jan. 13.

That same afternoon, once both core wallets had been emptied, funds reportedly began to be transferred out of Cryptopia’s 76,000+ secondary wallets, a process that would continue until the early hours of Jan. 17. At the same time, Cryptopia had informed the public about the incident and alerted law enforcement by Jan. 15.

Elementus indicates that just under $3.6 million in ETH was stolen, with ~$2.4 million in Dentacoin, and almost $2 million in Oyster Pearl, as well ~$3 million in unspecified other tokens.

Value of crypto assets stolen from Cryptopia as of Jan. 19. Source: Elementus

According to Elementus’ investigations, the hackers have thus far cashed out ~$880,000 of the stolen crypto via exchanges, which reportedly include major platforms such as Binance, Huobi and HitBTC. The remaining ~$15 million reportedly remains in two wallets identified as being under control of the perpetrators.

Elementus deems the incident to be unusual in that it differs from two common profiles of exchange hacks: these being either the exploitation of vulnerabilities in a wallet’s smart contract code, or unauthorized access to private key credentials, which typically involves the breach of a single wallet.

In Cryptopia’s case, the thieves’ gained access to as many as over 76,000 wallets, and moreover apparently displayed a lack of urgency in siphoning the funds over time. Elementus moreover suggests that Cryptopia’s inaction — for several days after the incident was detected — may imply the exchange had lost access to its own wallets.

As previously reported, until now estimations of the lost funds ranged between $3-13 million. Up to 40 Cryptopia users are reported to have sought legal representation in the incident’s aftermath.

On Jan. 17, Binance’s CEO reported that the exchange had frozen tokens sent to its wallet by the entity who allegedly hacked Cryptopia.

Tags
Related Posts
New Zealand Blockchain Group to Request Government Blockchain Strategy
New Zealand-based blockchain industry group BlockchainNZ announced that it will request a national blockchain strategy from the government next Thursday, according to a press release on May 21. The executive director of Blockchain NZ, Mark Pascall, will give a presentation to the New Zealand parliament’s economic development, science and innovation select committee hearing on the potential economic advantages of implementing blockchain tech solutions in the country. The presentation will reportedly serve as an introductory seminar on blockchain, bitcoin, smart contracts, security tokens, and decentralized autonomous organisations. Pascall commented that Blockchain NZ wants to have its experts work together with the …
Blockchain / May 22, 2019
NZ Police Report Says ‘Excellent Progress’ Being Made in Cryptopia Hack Investigation
Police in New Zealand are working with international law enforcement to track down hackers who reportedly stole over $16.1 million from local exchange Cryptopia, the police reported in a press release Feb. 7. Cryptopia, which suffered an attack beginning Jan. 15 and lasting around two weeks, has lost funds from tens of thousands of Ethereum (ETH) wallets. After confirming they were investigating the case Jan. 16, police revealed today that they are coordinating an international effort to track both the funds and perpetrators, in a report attributed to Detective Inspector Greg Murton. “The stolen cryptocurrency is being actively tracked by …
Ethereum / Feb. 7, 2019
McAfee Trading Platform Suffers DOS Attack Upon Launch
Cryptocurrency enthusiast John McAfee's crypto trading platform was immediately targeted by hackers with a denial of service (DOS) attack following its launch, according to an official Twitter post from McAfee on June 12. According to the post, the web servers for the “McAfeeMagic” trading platform, were hit with a cloaked High Orbit Ion Cannon (HOIC) DOS attack. Cybersecurity website Imperva describes an HOIC DOS attack as stressing a network by “flooding target systems with junk HTTP GET and POST requests.” However, McAffee tweeted the same day that the website was operational again. According to the same post, the McAfeeMagic trading …
Blockchain / June 13, 2019
Are crypto and blockchain safe for kids, or should greater measures be put in place?
Crypto is going mainstream, and the world’s younger generation, in particular, is taking note. Cryptocurrency exchange Crypto.com recently predicted that crypto users worldwide could reach 1 billion by the end of 2022. Further findings show that Millennials — those between the ages of 26 and 41 — are turning to digital asset investment to build wealth. For example, a study conducted in 2021 by personal loan company Stilt found that, according to its user data, more than 94% of people who own crypto were between 18 and 40. Keeping children safe While the increased interest in cryptocurrency is notable, some …
Adoption / Feb. 26, 2022
Deribit hackers move stolen Ether to Tornado Cash crypto mixer
In the aftermath of the $28 million Deribit hack, the unknown exploiter is moving stolen funds using the decentralized cryptocurrency mixer, Tornado Cash. The Deribit hot wallet hacker has transferred a total of 1,610 Ether (ETH), or around $2.5 million, to Tornado Cash, according to data from the Ethereum block explorer Etherscan. The funds were transferred in 17 transactions, with the first outgoing transaction occurring on Nov. 5 —just a few days after Deribit suffered the hack. The amount of funds moved to Tornado Cash is just a fraction of all stolen ETH on the hacker’s address, as its balance …
Blockchain / Nov. 7, 2022