cryptocurrencies

/

ethereum

Bybit exchange loses $1.4 billion in ETH to hackers, cofounder insists they are solvent and client funds are safe

Kitco Media
By Ernest Hoffman
Published
Updated
Kitco News
The Leading News Source in Precious Metals

Kitco NEWS has a diverse team of journalists reporting on the economy, stock markets, commodities, cryptocurrencies, mining and metals with accuracy and objectivity. Our goal is to help people make informed market decisions through in-depth reporting, daily market roundups, interviews with prominent industry figures, comprehensive coverage (often exclusive) of important industry events and analyses of market-affecting developments.

Bybit exchange loses $1.4 billion in ETH to hackers, cofounder insists they are solvent and client funds are safe teaser image

(Kitco News) – Bybit, the world’s second-ranked crypto exchange by volume, announced on Friday that it was the victim of an attack that saw hackers make off with over $1.4 billion in ether (ETH).

“Bybit detected unauthorized activity involving one of our ETH cold wallets,” they wrote in an X post. “Unfortunately, this transaction was manipulated through a sophisticated attack that masked the signing interface, displaying the correct address while altering the underlying smart contract logic. As a result, the attacker was able to gain control of the affected ETH cold wallet and transfer its holdings to an unidentified address.”

Bybit said their security team is working to investigate the incident, and they invited “Any teams with expertise in blockchain analytics and fund recovery” to join the effort.

“We want to assure our users and partners that all other Bybit cold wallets remain fully secure,” they added. “All client funds are safe, and our operations continue as usual without any disruption.”

Bybit cofounder Ben Zhou provided more details in a series of posts to his own X account. “Bybit ETH multisig cold wallet just made a transfer to our warm wallet about 1 hr ago,” he wrote. “It appears that this specific transaction was musked [sic], all the signers saw the musked [sic] UI which showed the correct address and the URL was from @safe.”

“However the signing message was to change the smart contract logic of our ETH cold wallet,” he added. “This resulted Hacker took control of the specific ETH cold wallet we signed and transfered all ETH in the cold wallet to this unidentified address.”

“Please rest assured that all other cold wallets are secure,” Zhou said. “All withdraws are NORMAL.”

Zhou also sought to reassure the cryptosphere in a follow-up post that Bybit would remain in good shape even if the funds were never recovered.

ETH sold off sharply as the news of the attack spread, dropping from $2,828 at 10:18 am EST to a low of $2,654 by 12:38 pm.

article image

ETH last traded at $2,688.12 for a loss of 1.86% on the session.

Kitco Media

Ernest Hoffman

Ernest Hoffman is a Crypto and Market Reporter for Kitco News. He has over 15 years of experience as a writer, editor, broadcaster and producer for media, educational and cultural organizations. Ernest began working in market news in 2007, establishing the broadcast division of CEP News in Montreal, Canada, where he developed the fastest web-based audio news service in the world and produced economic news videos in partnership with MSN and the TMX. He has a Bachelor's degree Specialization in Journalism from Concordia University. You can reach Ernest at 1-514-670-1339.

Mdi Earth Logo

Tags:

BybitEthereumETHEther pricecrypto exchangehack

Share

Disclaimer: The views expressed in this article are those of the author and may not reflect those of Kitco Metals Inc. The author has made every effort to ensure accuracy of information provided; however, neither Kitco Metals Inc. nor the author can guarantee such accuracy. This article is strictly for informational purposes only. It is not a solicitation to make any exchange in commodities, securities or other financial instruments. Kitco Metals Inc. and the author of this article do not accept culpability for losses and/ or damages arising from the use of this publication.