On Thursday morning, cryptocurrency exchange website Crypto.com announced that the company had lost well over $30 million in Bitcoin and Ethereum after hackers attacked their servers on January 17th.
The total value of the unauthorized withdrawals was 4,836.26 ETH and 443.93 BTC which corresponds to roughly $15.2 million and $18.6 million. The company also says that 483 Crypto.com user accounts were compromised as the result of the theft. Fortunately, all the sufferers have been fully reimbursed for their losses.
“On Monday, 17 January 2022 at approximately 12:46 AM UTC Crypto.com’s risk monitoring systems detected unauthorized activity on a small number of user accounts where transactions were being approved without the 2FA authentication control being inputted by the user, “This triggered an immediate response from multiple teams to assess the impact. All withdrawals on the platform were suspended for the duration of the investigation. Any accounts found to be impacted were fully restored.” – says Crypto.com.
Because of the hack, the company has changed its two-factor authentication system to a new architecture, and receded all existing 2FA tokens, meaning that all customers will need to switch over to the new authentication system.
Cryptocurrency exchange websites are becoming high-value targets for hacker attacks. In 2021 there were more than 20 exchange hacks where the criminals escaped with more than $10 million, according to an analysis by NBC News, there were another six cases where the value of funds stolen exceeded $100 million.
source: https://www.theverge.com/2022/1/20/22892958/crypto-com-exchange-hack-bitcoin-ethereum-security