Posted on

KickICO Hacked, $7.7 Million Stolen After Smart Contract Breach

Suspected hackers have successfully managed to attack another cryptocurrency project, this time, KickICO. The attackers were able to steal 70 million KICK which has a market value of about $7.7 million. The hack comes barely two weeks after Bancor, a decentralized exchange platform suffered a $23.5 million cyberattack.

Details of the Hack

According to a statement released via the project’s Medium page, the attack occurred at 9:04 UTC, yesterday (July 26, 2018). The suspected attackers gained control of the project’s smart contract by obtaining a private key, thus, allowing them to siphon coins from the wallet of users.

With full access to the project’s smart contract, the hackers were able to replace 40 different addresses with new spoof addresses containing the same amount of KICK tokens. By so doing, the hackers didn’t alter the total supply of KICK tokens hoping that such a tact would enable them to fly under the radar.

Only the timely intervention of the project team prevented the attack from being more catastrophic. Once alerted to the situation, the project team was able to arrest the situation by replacing the compromised key with a that of the cold storage wallet. The announcement also advised users who lost funds in the attack to send an email to the project team.

Plans to Reimburse Affected KickICO Users

The announcement also revealed that affected users would be reimbursed, saying:

We’ll return [sic] exact amount of tokens to their legit owners. We apologize for the inconveniences but guarantee that the situation is under control.

The working theory of the internal investigators on the attack is that the recent price growth of KICK tokens caused the project to become a potential target of hackers. In the past fortnight, KICK coins rose from $0.4 to 0.12. However, it is disconcerting to note that the attack took place only because the hackers got access to a private key.

What do you think about the KickICO hack? Keep the conversation going in the comment section below.

Image courtesy of Medium (KICKICO OFFICIAL).


Posted on

$1.2 Billion Dollars Have Been Stolen Since 2017 According to a Report

As cryptocurrencies expand and attract many investors all over the world, there have also been criminals trying to scam users and steal their funds. According to estimates form the Anti-Pishing Working Group, criminals have ben able to steal about $1.2 billion dollars in cryptocurrencies sin the beginning of 2017.

Cryptocurrency Criminals

The research shows that an important number of virtual currencies have been stolen from their owners. These are very alarming numbers for the crypto community. How to avoid being hacked if even top virtual currency exchanges have been affected by hacks?

The estimates that the non-profit group was able to gather, include reported and unreported theft of cryptocurrencies. That includes the most important hacks in the last times, and also minor thefts that couldn’t be reported to local authorities.

Dave Jevans, Chief Executive Officer of the cryptocurrency security firm CipherTrace, explained:

“One of the problems that we’re seeing in addition to the criminal activity like drug trafficking and money laundering using cryptocurrencies is the theft of these tokens by bad guys.”

Additionally, the recovery rate of owners has been 20% of the stolen funds – which is always better than nothing. Though, these numbers could be bigger if other security measures are implemented. But the truth is that law enforcement officials are having trouble to find criminals involved in these thefts.

According to Jevans, the new General Data Protection Regulation (GDPR), will negatively impact the overall security of the internet and will also aid cybercriminals. GDPR rules aims to simplify the rules that companies ned to follow

“By restricting access to critical information, the new law will significantly hinder investigations into cybercrime, cryptocurrency theft, pishing, ransomware, malware, fraud and crypto-jacking.”

Important Hacks

Since the beginning of 2018, the market has experienced different hacks that took place in different virtual currency exchanges. Two of the most important where the Japanese exchange Coincheck and the Italian platform BitGrail.

Coincheck was one of the most important virtual currency exchanges in Japan. At the beginning of the year, the exchange reported that it had been hacked resulting in a loss of 523 million NEM coins – which at that time were valued at $500 million dollars.

The company had to explain the situation to the media giving a press conference. The cryptocurrencies were not properly stored in cold or multi sig wallets, making it very easy for hackers to access the funds.

Another important hack occurred to BitGrail, an Italian cryptocurrency exchange that was focused on Nano tokens (former RaiBlocks / XRB). During a hack that took place at the beginning of February, the company announced that lost 17 million Nano – which price fell from $11.5 to $9.12 dollars.

$195 million dollars have been stolen, which means that between Coincheck and BitGrail they account for an important percent of the total $1.2 billion dollars stolen since the beginning of 2017.

After these two hacks took place, other exchanges decided to impose further security measures to avoid being attacked. It is always advised to users to save their virtual currencies in cold storage wallets.