Report suggests $1 million of ransomed Bitcoin was cashed out on Binance

Published at: Aug. 24, 2020

Researchers have uncovered evidence that over $1 million worth of Bitcoin (BTC) from addresses linked to Ryuk ransomware attacks was moved through a wallet on Binance.

According to a report by Forbes on Aug. 23 the researchers took a sample of 63 transactions, representing $5.7 million of the over $61 million estimated by the FBI to have been stolen using the Ryuk ransomware.

Of the $5.7 million, $1,064,865 worth of Bitcoin from multiple wallet addresses was bounced through numerous non-connected wallets before eventually finding its way to Binance, where it was cashed out.

The Binance wallet has been in use as recently as this month, although the latest transaction, occurring on Aug 22, just a day before the Forbes article was published, emptied the wallet completely.

The remaining $4.7 million of Bitcoin being traced by the researchers is currently still being held in a number of off-exchange addresses.

Cointelegraph spoke to the Binance Security Team about the incident, which explained that the transactions outlined in the Forbes article occurred over 18 months ago, and the relevant accounts had been tracked and reviewed at the time.

Furthermore, the fungible nature of most cryptocurrency makes it impossible to know whether a particular token has come from a fraudulent or legitimate source, once the two have been combined:

“This is further complicated by the fact that Binance has a wide variety of customers operating on its platform, with some customers receiving such funds through simple peer-to-peer trades, and others receiving through corporate services which leverage our platform for liquidity.”

Binance has a number of security systems in place, using various techniques to identify potentially malicious activities. “The system is under constant improvement to ensure the utmost vigilance for such activities, while minimizing the risk of false-positives.”

As Cointelegraph reported, Binance recently collaborated with law enforcement in Ukraine to help capture a gang of cybercriminals trying to launder $42 million through the exchange.

Tags
Technology
Binance
Ransomware
Aml
Related Posts
Crypto in the crosshairs: US regulators eye the cryptocurrency sector
In her monthly Expert Take column, Selva Ozelli, an international tax attorney and CPA, covers the intersection between emerging technologies and sustainability, and provides the latest developments around taxes, AML/CFT regulations and legal issues affecting crypto and blockchain. Lately, news headlines are focused on regulators’ concerns over the lack of investor protections in the cryptocurrency market, which has ballooned to more than $2 trillion, and the possible risks to financial stability. National security agencies across the administration of United States President Joe Biden are grappling with high-profile cases of cryptocurrencies playing a role in ransomware attacks, intellectual property espionage, sanctions …
Regulation / Oct. 24, 2021
California University Pays Million-Dollar Crypto Ransom
The University of California at San Francisco School of Medicine reportedly paid a $1.14 million ransom in cryptocurrencies to the hackers behind a ransomware attack on June 1. According to CBS San Francisco, the UCSF IT staff first detected the security incident, stating that the attack launched by NetWalker group affected “a limited number of servers in the School of Medicine.” Although the areas were isolated by experts from the internal network, the hackers left the servers inaccessible and managed to deploy the ransomware successfully. A statement published by the University of California said: “The data that was encrypted is …
Technology / June 30, 2020
Binance Smart Chain Adds Chainlink Oracles for Better DeFi
Binance Smart Chain — a dual-chain architecture from major crypto exchange Binance — is now integrating Chainlink (LINK) data oracles. Binance Smart Chain adds smart contracts to the exchange's original chain, Binance Chain, and is currently in testnet. Chainlink co-founder Sergey Nazarov told Cointelegraph that in his opinion, this integration will save time and effort for developers who are building decentralized apps on the blockchain: “With the Chainlink integration, Binance Smart Chain developers no longer need to dedicate months of engineering time to set up their own oracle infrastructure. Now, they can simply use Chainlink as an abstraction layer to …
Technology / July 23, 2020
A Look Into Recent Binance Trading Performance Issues
As Cointelegraph reported on Feb. 19, Binance temporarily suspended most of its crypto trading platform activities due to unscheduled system maintenance. For several hours the exchange’s users were unable to perform most basic functions including deposits, withdrawals, spot trading, margin trading, P2P trading, lending, redemption, as well as asset transfers from sub-accounts, margin accounts, futures accounts, and fiat wallets on the platform. During the outage, Binance CEO Changpeng Zhao explained that the root cause of the trading halt was a technical issue with one of the market data pushers. In the end the exchange solved the issue the same day, …
Technology / Feb. 25, 2020
IT Firm Helps Healthcare Providers Fight Crypto Ransomware Amid Coronavirus
As the novel coronavirus crisis continues, a cybersecurity firm has started offering free help to healthcare providers that fall victim to cryptocurrency-demanding ransomware. According to an announcement on March 18, cybersecurity firm Emsisoft partnered with incident response company Coveware to allow free access to ransomware-related services at no cost to healthcare providers. The initiative aims to get the impacted organizations operational in the shortest time possible to reduce the impact on patient care to a minimum. “A perfect storm” According to the firm, ransomware attacks have a seasonal aspect with the number of incidents spiking during the spring and summer …
Technology / March 19, 2020