Fourth largest Bitcoin exchange. Bithumb, hacked for millions of Won

in bravenewcoin •  7 years ago 

The largest bitcoin and Ether exchange in South Korea by volume, Bithumb, was recently hacked. Monetary losses from compromised accounts have started to surface, and are quickly reaching into the millions of Won.

With a reported 75.7% share of the South Korean bitcoin market volume, Bithumb is one of the five largest bitcoin exchanges in the world and hosts over 13,000 bitcoins worth of trading volume daily, or roughly 10 percent of the global bitcoin trade.

The exchange also hosts the world's largest Ether market. While trade in the South Korean Won currently makes up the fourth largest currency market for bitcoin, trailing the US Dollar, Chinese Yuan and Japanese Yen, the Won market is Ethereum’s largest. Bithumb accounts for around 44 percent of South Korean Ether trading.

A cyber attack late last week resulted in the loss of tens of millions of Won from customers accounts, according to a major local newspaper, the Kyunghyang Shinmun. One victim alone claimed that "Bitcoins worth 10 million Won” in his account “disappeared instantly.”

Hackers succeeded in grabbing the personal information of 31,800 Bithumb website users, including their names, mobile phone numbers and email addresses. The exchange claims that this number represents approximately three percent of customers.

The breach was discovered by Bithumb on June 29 and reported to the authorities on June 30. More than 100 Bithumb customers have since filed a complaint with the National Police Agency's cybercrime report center.

While admitting to being hacked on their website, Bithumb maintained that there was no direct access to funds stored on the exchange. Nonetheless, many customers are reporting their digital currency wallets being emptied. The exchange further claims that the breach was made to a personal computer belonging to an employee, and not the exchange’s internal network, servers nor digital currency wallets.

"The employee PC, not the head office server, was hacked. Personal information such as mobile phone and email address of some users were leaked. However, some customers were found to have been stolen from because of the disposable password used in electronic financial transactions.” - Bithumb

While victim accounts of exactly how their funds were stolen have widely differed, attackers appear to have stolen enough credentials to begin a process of “voice phishing,” where the scammers call up victims one at a time and pose as representatives of Bithumb.

One victim claims that the attacker posed as an executive at Bithumb and phoned to say that he was "suspicious of a foreign hacking transaction,” and instructed his victim to give him an “identification number written on the letter from Bithumb.” The number in question was the victim’s One-Time Password, (OTP) which granted the attacker immediate access to ten million Won, worth about US$8,700.

The exchange posted a notice on their website stating that "compensation for personal information leakage cases has been decided." The company said they would pay up to 100,000 Won per person, currently worth US$870, to members. Further damages will be compensated for as soon as the amount is confirmed.

They also claim that they immediately reported the hack to three separate agencies, the Korea Communications Commission, the Korea Internet & Security Agency (KISA), and the Supreme Prosecutors' Office. However, the Herald reported on Monday that about 100 victims are expected to file a class action lawsuit against Bithumb.

It is unclear whether the exchange will be legally responsible for the lost funds, even after the damages are proven. The situation is complicated by a lack of regulation regarding digital currencies in South Korea, which have not been recognized in any way.

The Korea Herald reported that a set of bills is being prepared by Rep. Park Yong-jin of the ruling Democratic Party of Korea. The bills aim to revise the Electronic Financial Transaction Act and give cryptocurrencies a legal standing, including bitcoin and Ethereum. A similar process was recently completed in Japan, which legalized bitcoin payments on April 1.

The amended bills state that only companies with capital of 500 million Won or more, sufficient professional manpower, and computerized equipment are allowed to receive digital currency and handle it. There would also be reporting regulations on anyone earning income from trading digital currencies.

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
Sort Order:  

Seems the exchange handled the situation well. Less than a $1,000,000 taken, should be able to make everyone whole easily with there revenue stream. And $900 compensation on top for loss of personal info.

Not ideal but these things happen to all companies

  ·  7 years ago (edited)

Very sad for the people who lost money, but a reminder for everyone in the crypto space to HOLD YOUR OWN PRIVATE KEYS. Centralized exchanges can always be hacked, this is not the first time and will not be the last time.

Feel Sorry for these people. Please people get a Hardware wallet like Ledger Nano or Trezor to store larger amounts of Bitcoin. If you are adamant on using a "hot wallet" use an app like Copay which is on all platforms and uses multi signatures.

Interesting I didn't know about that, I will look it up, Ledger Nano or Trezor, Copay app, thanks 😊

Yeah I was wondering about those hardware wallets but I'd be worried about losing it or forgetting the access code. But probably a way better idea than leaving it in these exchanges

Wow!.... the hacks obviously is gonna be the plague of the cryptocurrency world

Bad day for bitcoin

Yes , hardwallet ! I have a question ! Is the copay wallet connected with crypto exchange ? Sorry I'm newbie ?

Yet another exchange hacked...It's almost weekly news.

Very sad for the cryptospace and those that are impacted. I really do wish these exchanges take more corrective action - When these hacks happens, it hurts all of us.

From the research I've done, I've come to the conclusion that having money on an exchange is not a good idea.

Crypto-currencies are supposed to be decentralized. To have them on a centralized exchange negates much of the advantages.

criminals, evil is always and everywhere !
protection and defense is crucial , thanx for letting me know
SteemOn

Thanks for sharing this! I just upvoted you

Bitcoin rising is growing daily. Thanks for post.

Very good and makes me want to end the reading

That's one of the disadvantage in crypto currency :/

Shoking news 😨, but serves as a warning for crypto owners to not give our password to anybody and I think its a good idea to have cryptos stored in different wallets

This is hectic. Not exactly ideal for the exchange holder of 10% of the entire world's capacity of bitcoins..

A great publication. Well done. Greetings. Happy day. Please support me+followe

it's very sad, because it's not easy to mine bitcoins now not like before that it was not popular, the higher the exchange the harder we can get bitcoins

Decentralized exchanges are the key

Congratulations @bravenewcoin! You have completed some achievement on Steemit and have been rewarded with new badge(s) :

Award for the number of upvotes

Click on any badge to view your own Board of Honor on SteemitBoard.
For more information about SteemitBoard, click here

If you no longer want to receive notifications, reply to this comment with the word STOP

By upvoting this notification, you can help all Steemit users. Learn how here!

Really , that's a lot of cash at startup ! To receive a liscence ! That could be restrictive !

Thanks for the great post