For HomeFor BusinessFor Partners
Industry News
1 min read

Binance Corners Two KyberSwap Hack Suspects, Involves Law Enforcement

Vlad CONSTANTINESCU

September 06, 2022

Promo Protect all your devices, without slowing them down.
Free 30-day trial
Binance Corners Two KyberSwap Hack Suspects, Involves Law Enforcement

In an independent investigation of the recent $265,000 attack on decentralized crypto exchange (DEX) KyberSwap, Binance security experts identified two suspects that may have staged the heist.

Last week, cybercriminals leveraged a frontend vulnerability against Kyber Network and stole crypto assets from the platform’s users.

In response, KyberSwap started investigating and put out a 10% bounty, or about $40,000, for the perpetrators in exchange for the stolen assets. Analogously, Binance launched an independent investigation that led to the identification of two suspects, and shared their findings with the Kyber team, as the company’s CEO Changpeng “CZ” Zhao confirms.

Furthermore, Binance shared its intel with law enforcement agencies to help them bring the perpetrators to justice.

Threat actors likely used a frontend vulnerability on KyberSwap’s platform to inject malicious code into its Google Tag Manager (GTM). While the DEX maintainers responded immediately to the incident by disabling it, the attackers still managed to make off some serious loot.

The perps seem to have focused on whale wallets (single wallets with large amounts of assets), as the funds were siphoned only from two compromised addresses. Kyber Networks managed to suppress the incident fairly quickly, but they suspect the attackers had a broader spectrum and may have tried to compromise other projects.

“We strongly urge all #DeFi projects to conduct a thorough check on your frontend code & associated Google Tag Manager (GTM) scripts as the attacker may have targeted multiple sites,” warns the company in a tweet. “Let’s work together as one #DeFi community to defend against these malicious attacks.”

In the announcement on Twitter, Kyber Network included a guidefor users who believe their address may have “interacted with the malicious script or has been given wrongful approval.” The guide offers instructions on checking the blockchain for records that point to the malicious address and revoking them.

tags

Industry News

Author

Vlad CONSTANTINESCU

Vlad CONSTANTINESCU

Vlad's love for technology and writing created rich soil for his interest in cybersecurity to sprout into a full-on passion. Before becoming a Security Analyst, he covered tech and security topics.

View all posts

Right now Top posts

Start Cyber Resilience and Don’t Be an April Fool This Spring and Beyond
Scam How to Tips and Tricks

Start Cyber Resilience and Don’t Be an April Fool This Spring and Beyond

April 01, 2024

2 min read
Spam trends of the week: Cybercrooks phish for QuickBooks, American Express and banking accounts
Spam Industry News Threats

Spam trends of the week: Cybercrooks phish for QuickBooks, American Express and banking accounts

November 28, 2023

4 min read
Protecting your important: Stick to these 8 cybersecurity tips for safe Black Friday and Cyber Monday deal hunting
Protecting Your Important How to Tips and Tricks

Protecting your important: Stick to these 8 cybersecurity tips for safe Black Friday and Cyber Monday deal hunting

November 08, 2023

4 min read
3 in 5 travel-themed spam emails are scams, Bitdefender Antispam Lab warns
Industry News Spam

3 in 5 travel-themed spam emails are scams, Bitdefender Antispam Lab warns

August 10, 2023

4 min read

FOLLOW US ON SOCIAL MEDIA

You might also like

The Safety Formula - Episode 10: Human Intuition Meets Advanced Technology
The Safety Formula

The Safety Formula - Episode 10: Human Intuition Meets Advanced Technology
Bitdefender

April 17, 2024

2 min read
Ukraine claims it hacked Russian Ministry of Defence, stole secrets and encryption ciphers
Industry News

Ukraine claims it hacked Russian Ministry of Defence, stole secrets and encryption ciphers
Graham CLULEY

March 06, 2024

2 min read
Crimemarket Taken Down by German Authorities
Industry News

Crimemarket Taken Down by German Authorities
Silviu STAHIE

March 05, 2024

1 min read

Bookmarks

loader