OKX Confirms Attack on Users, Reimburses Victims

Reports emerged earlier this week that two OKX users’ accounts were hacked and accessed by fraudsters.

The incident led to an investigation by OKX and security partner SlowMist. Sources claim the theft took place via an SMS attack.

Hackers Breach OKX Accounts: $600M Outflows Reported

Unconfirmed sources claim OKX saw over $600 million in outflows following the incident. OKX says it has reimbursed two affected users.

SlowMist founder Yu Xian was one of the first to report the incident. Xiam explained that the users had received SMS threat alerts from Hong Kong before the attack. Afterward, a new API key was created for their account verification. This enabled the hackers to pull funds from the accounts.

Source: X

Other security experts contributed to the investigation. For example, analysts at Dilation Effect spotted an alleged weakness in OKX’s authentication mechanism. They claimed that OKX’s design allowed users to move to less stringent security measures during critical moments.

According to OKX’s CEO, the hack was caused by the victim’s email and SMS being hijacked. In addition, the victims reportedly did not activate two-factor authentication.

Source: X
A Rise in Crypto Scams

A recent Coingecko report shows that more experienced hackers have lately begun evading 2FA authentication procedures. A Chinese trader lost $1 million in early June to a fraud utilizing the Aggr Google Chrome plugin, which was a promotional tool. Hackers use stolen user cookies from the plugin to get around 2FA authentication and passwords.

Similarly, June saw an increase in scams. CoinGecko confirmed a data breach involving GetResponse, a third-party email management platform. The attacker exploited the breach to send victims 23,723 phishing emails.

Source: X

Hackers who use phishing attacks seek to gain private keys to cryptocurrency wallets and other sensitive data. These days, hackers use different tactics to attack unsuspecting users. One of their ploys tries to fool investors into voluntarily transferring money to a phony address that looks like addresses they have dealt with in the past.

Thankfully, we have an article on how to prevent crypto scams. Check it out here.

Disclaimer

The information discussed by Altcoin Buzz is not financial advice. This is for educational, entertainment, and informational purposes only. Any information or strategies are thoughts and opinions relevant to the accepted risk tolerance levels of the writer/reviewers and their risk tolerance may be different than yours. We are not responsible for any losses you may incur due to any investments directly or indirectly related to the information provided. Bitcoin and other cryptocurrencies are high-risk investments so please do your due diligence. Copyright Altcoin Buzz Pte Ltd.

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.