tldr; A crypto attacker compromised a whale’s multisig wallet minutes after its creation, draining and laundering up to $40 million over 44 days. The attacker exploited a private key compromise, transferring ownership of the wallet shortly after its setup. Funds were laundered through Tornado Cash and other methods, with $25 million still under the attacker’s control. The wallet’s insecure configuration and potential operational security lapses contributed to the breach. Experts suggest better isolation and verification practices to prevent such attacks.
*This summary is auto generated by a bot and not meant to replace reading the original article. As always, DYOR.
nomoney110 on
don’t want to pay taxes
DogStunning4845 on
Which wallet?
VirtualMemory9196 on
> The multisig was configured as a “1-of-1,” meaning only a single signature was required to approve transactions, “which is not a multisig conceptually,” Rudytsia added.
If anyone was wondering
Leave A Reply
Du musst angemeldet sein, um einen Kommentar abzugeben.
4 Kommentare
tldr; A crypto attacker compromised a whale’s multisig wallet minutes after its creation, draining and laundering up to $40 million over 44 days. The attacker exploited a private key compromise, transferring ownership of the wallet shortly after its setup. Funds were laundered through Tornado Cash and other methods, with $25 million still under the attacker’s control. The wallet’s insecure configuration and potential operational security lapses contributed to the breach. Experts suggest better isolation and verification practices to prevent such attacks.
*This summary is auto generated by a bot and not meant to replace reading the original article. As always, DYOR.
don’t want to pay taxes
Which wallet?
> The multisig was configured as a “1-of-1,” meaning only a single signature was required to approve transactions, “which is not a multisig conceptually,” Rudytsia added.
If anyone was wondering