In an interview with Bloomberg TV Of Crypto.com Chief executive Chris Marszalek acknowledged that 400 customer accounts had been compromised by hackers. He said his team had detected unauthorized transactions from the account, but they would immediately resolve the issue and pay the affected users in full. Now, there are companies Published A report reveals details from his post-mortem. Apparently, 483 accounts were affected and unauthorized withdrawals totaling about 4,836.26 ETH, 443.93 BTC and about $ 66,200 in other currencies. Based on the current exchange rate, this is $ 15.3 million ETH and $ 18.7 million ETC for a total loss of $ 34 million.
Before the company disclosed the possibility of hacking in terms of lost funds, blockchain security analytics company Pexhield Inc. Says Crypto.com has lost $ 15 million worth of cryptocurrency. At least 4,600 of the lost coins were Ethereum, and half of them were found to be laundered – a process that obscures the course of a currency transaction. Meanwhile, Bitcoin research firm OXT Research says the company could be at a loss Up to $ 33 million.
The report explains that the company’s risk monitoring systems detected unauthorized activity a few days ago, where transactions without a two-factor authentication are being approved for a small number of accounts. As a result, cryptocurrency exchanges Paused Withdrawal on the evening of 16 January. In fact, in his Twitter announcement comments, people revealed that their funds were stolen even if they enabled 2FA.
Other Tweet Posted on January 17, Marszalek stated that “no customer funds were lost,” the company’s infrastructure was down 14 hours, and his team tightened its security in response to what happened. The report explains in that last section, that Crypto.com has revoked all 2FA token customers and implemented additional security measures that require all account users to log in again. The agency said the move was necessary because it had been moved to a completely new 2FA infrastructure. However, it eventually wants to move away from 2FA and move on to true multi-factor authentication (MFA).
Crypto.com has also introduced an additional security measure for which users will have to wait 24 hours before they can withdraw to a newly registered white-listed address. Finally, the company is launching the Global Account Protection Program (WAPP) on February 1st for users who want additional protection for their funds.
WAPP can recover up to অংশগ্রহণ 250,000 from a participating user if a third party gains access to their account. It states that in order to qualify for the program, users must enable multi-party authentication on all types of transactions and do not use jailbroken devices. To be able to recover their funds under the program, they must set up an anti-phishing code at least 21 days prior to an unauthorized transaction, file a police report and provide a copy to Crypto.com, as well as a questionnaire. Must complete forensic investigation support.
All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you purchase something through one of these links, we may receive an approved commission.