Analysts Claim CoinBene Transactions, Recent Activity ‘Consistent’ With Exchange Hack

Published at: March 28, 2019

Data scientists at blockchain infrastructure firm Elementus have published details of recent transactions from crypto exchange CoinBene that they consider to be suspect, beginning with $105 million in crypto swiftly being moved out of the exchange’s hot wallet.

The findings, reportedly based on data sourced using the Elementus Query Engine, were published on March 27. Elementus also provides independently verifiable raw data that readers can download and compare against the Ethereum (ETH) blockchain.

As previously reported, CoinBene was yesterday prompted to reassure users that a period of unforeseen maintenance was in fact not due to a hack, as some community members had suspected.

In presenting its findings, Elementus emphatically states that it is not aiming “to refute what CoinBene is claiming.”

It nonetheless presents several key observations based on its findings, arguing that the identified pattern of transfers and sequence of events “is consistent with how exchange hacks commonly play out” — i.e. “large amount of funds withdrawn quickly, period of inactivity, remaining funds secured into the cold wallet.”

Elementus’ findings are organized as a timeline, spanning March 25-26 Eastern Time:

“Monday 25-Mar, 2:58pm: A series of transfers totaling $105m in value begins out of CoinBene's hot wallet into three different addresses. Monday 25-Mar, 6:24pm: CoinBene's hot wallet ceases all activity and remains inactive for 8 hours. Tuesday 26-Mar, 2:44am: CoinBene's hot wallet begins moving funds to the cold wallet.”

The key points Elementus focuses on include the fact that the amount of crypto being transferred is vast, and while such large transfers may indeed occur when exchanges move funds between hot and cold wallets, “that is clearly not what's happening here,” given that:

“After leaving CoinBene, the tokens were quickly moved into Etherdelta, where they were sold for ETH. A large amount of funds were also moved into centralized Exchanges, including Binance, Huobi and Bittrex. The funds continue to move into exchanges as I write this.”

Transfers between multiple intermediary wallets, Elementus further argues, is not typical for exchanges, but is instead characteristic of people who wish to cover their tracks by funneling ill-gotten funds through a series of “sweeping addresses.”

Elementus notes that the $105 million in market value covers positions in 110 different cryptos, the largest position being $70 million worth of Maximine, a token whose price has reportedly soared 754.5 percent since the start of March.

Elementus also notes that CoinBene was identified as a prime example in crypto index provider Bitwise Asset Management’s recent analysis of suspected fake trading volumes on crypto exchanges, presented to the United States Securities and Exchange Commission last week.

As previously reported, CoinBene — currently ranked 10th on CoinMarketCap by adjusted daily trade volume — has claimed the maintenance downtime has been a preventive measure, and that it has been working to upgrade the security of the exchange’s wallet.

Tags
Related Posts
Most Significant Hacks of 2019 — New Record of Twelve in One Year
Twelve major cryptocurrency exchange hacks occurred in 2019. Of these, 11 hacks resulted in the theft of cryptocurrency while one only involved stolen customer data. In total, $292,665,886 worth of cryptocurrency and 510,000 user logins were stolen from crypto exchanges in 2019. Cryptocurrency exchanges experienced more hacks last year than in 2018, when only nine cryptocurrency exchanges fell victim to security breaches. As time goes on, you might think that cryptocurrency exchanges would become more secure. The reality, however, is that more hacks on cryptocurrency exchange are taking place year after year. In general, crypto exchanges remain unregulated, and it’s …
Ethereum / Jan. 5, 2020
ETH Stolen From Crypto Exchange Cryptopia Moved, Portion Deposited on Exchange
A portion of the ether (ETH) stolen from hacked New Zealand-based cryptocurrency exchange Cryptopia has been moved and deposited to a different crypto exchange, according to an analysis. Crypto Anti-Money Laundering startup Coinfirm tweeted about their findings on May 20. According to Coinfirm, 30,790 (over $7.778 million) of the stolen ether has been reportedly moved to a new address, and 10 ETH (over $2,500) moved to the hot wallet of another crypto exchange. A Twitter account dedicated to reporting on large transactions to and from cryptocurrency exchanges, Whale Alert, claims that 500 of the stolen ether (over $125,000) has today …
Ethereum / May 21, 2019
NZ Exchange Cryptopia Reports Hack With 'Significant Losses'
New Zealand digital assets exchange Cryptopia has suspended services after detecting a major hack that has reportedly “resulted in significant losses,” according to a tweet posted today, Jan. 15. The exchange revealed in the tweet that the hack occurred yesterday, Jan. 14. The platform had initially informed the public it was undergoing unscheduled maintenance, issuing several similarly laconic updates before today’s official disclosure of the breach. According to today’s tweet, the exchange has notified government agencies and authorities, including the New Zealand Police and High Tech Crimes Unit, who have reportedly opened an investigation into the matter and are allegedly …
Ethereum / Jan. 15, 2019
Crypto Exchange Upbit Finishes Security Update in Response to 2019 Hack
Strengthening its walls after a hack in late 2019, South Korean crypto exchange Upbit has finished a security upgrade for the wallets on its exchange platform, restoring functionality once again. Upbit decided to update its defenses in response to an Ethereum (ETH) hack the exchange suffered in 2019, an Upbit representative confirmed to Cointelegraph in an email on Jan. 14, 2020, adding: “It is part of our effort to increase Upbit’s overall security since the Ethereum theft incident last November. Immediately following the incident, we suspended deposit/withdrawal services and transferred all crypto-assets to cold wallets. Since then, we’ve been revamping …
Ethereum / Jan. 15, 2020
Crypto.com finally speaks out: 483 user accounts compromised
The Crypto.com security breach saga gets clarity with an official statement from the Singapore-based crypto exchange following a halt on withdrawals after detecting "suspicious activities" in user accounts. In a statement today, Crypto.com revealed that "4,836.26 ETH, 443.93 BTC and approximately US$66,200 in other currencies" had been taken from clients' accounts without their permission. The overall loss is presently valued at around $33.8 million, as per the current market value. Following a security breach, several Crypto.com users have made complaints that their money had been stolen. However, the company's previous responses had failed to quell concerns. Following the 17th of …
Bitcoin / Jan. 20, 2022