Atomic Wallet Hack: Unveiling Security Flaws and $100M Lost to Cybercrime

Posted on by Artificial Intelligence
Estonian police investigate Atomic Wallet hack, dimly lit cybercrime scene, shattered tech elements symbolizing $100M loss, cryptos such as Bitcoin, Ether, Dogecoin subtly present, mysterious hacker character in shadows hinting at Lazarus group, ominous and tense atmosphere, focus on wallet vulnerabilities, cyber-noir art style.

The recent hack of the non-custodial mobile crypto wallet, Atomic Wallet, has left the company cooperating with Estonian police for investigations. Atomic Wallet CEO, Konstantin Gladych, confirmed that the team is working closely with the authorities and has shared critical information that could help in the investigation. Interestingly, the team has also received a request from Kazakhstan police, highlighting the global attention this breach has received.

Users of the Atomic Wallet found themselves at a loss, with over $100 million worth of crypto stolen in just the first weekend of June. Cryptocurrencies compromised include Bitcoin, Ether, Tether, Dogecoin, Litecoin, BNB, and Polygon. With over 5,500 wallets affected by the theft, experts from blockchain intelligence firm Elliptic suspect the North Korean hacker group Lazarus might be behind this massive attack.

Atomic Wallet, with over 1 million downloads on the Google Play store, enables users to store private keys of their crypto on their devices, eliminating the need for a custodian. Yet, the attack raised multiple questions about its technical design and vulnerabilities that allowed hackers to access users’ private keys, as the CEO of blockchain security firm Hacken, Dyma Budorin, pointed out.

Budorin shared a couple of possibilities for the breach, citing concerns that the wallet might have sent copies of users’ private keys to the company’s server. Alternatively, the wallet might have generated recovery (seed) phrases that were not random enough, making it easier for hackers to “brute-force” the wallets. Other possibilities include hackers deriving private keys from users’ transaction data or a breach within the wallet manufacturer’s infrastructure.

Despite the voiced concerns, Gladych did not comment on the potential cause of the hack. But this is not the first time security flaws were pointed out for the Atomic Wallet. Last year, security firm Least Authority found issues in Atomic’s use of cryptography, the robustness of project documentation, and the incorrect use of Electron, a framework for building desktop applications. Least Authority also mentioned that Atomic did not adhere to best practices for wallet design.

This incident serves as a reminder that the world of crypto is still not entirely safe from hackers and cybercrime. Crypto enthusiasts must remain vigilant and research the security features of the wallets and services they choose to use, as even popular and reputable platforms can have vulnerabilities. With further investigations underway, one hopes to learn more about what caused the breach and how to prevent such incidents in the future.

Source: Coindesk

Sponsored ad

More Articles

An intense, atmospheric scene of a futuristic digital cityscape shrouded by a cloud of encryption. The scene is bathed in foreboding twilight with a spotlight piercing on a symbol that represents a breach, generating ripples. A net symbolized secure recovery overlies the scene. The style dominated by Baroque elements, reflecting echoes of high stakes drama, yet sparking new conversations.

Securing the Cryptosphere: Crypto-Heists & How to Mitigate Future Threats

“The recent $62 million hack of Curve Finance highlights a pressing need for improved security in the cryptocurrency landscape. The considerable financial damage reveals potential vulnerabilities in DeFi platforms. Despite nearly 79% of funds successfully recovered, this unfortunate incident brings attention to the preparedness of DeFi sector against sophisticated threats.”

An atmospheric digital universe, bathed in contrasting hues of hope and skepticism, portraying a conceptual visualization of blockchain security and technological progression. The scene shows a fragile balance scale set against a cryptic backdrop, filled with intricate cogs and gears, representing the complex and volatile dance between security risks and technological advancements. One side of the scale carries a padlocked chest glowing with vulnerability, symbolizing the stolen assets and security breaches. The other side holds a shining beacon of resilience, illustrating the returning stolen funds and highlighting blockchain's underlying strengths. A figure stands in the middle, negotiating between both sides, personifying the controversial yet pragmatic approach to intrigue hackers into asset retrieval, thus depicting the ongoing balancing act. The setting is touched with artistic elements of cyberpunk style, casting dramatic, low-key lighting to reveal the mysterious sides of the cryptosphere and its inherent uncertainties. The overall mood of the image implies a mixture of caution, awe, and potential, mirroring the ongoing debates and uncertainties surrounding the blockchain technology's evolution.

Blockchains Balancing Act: Security Vulnerabilities and Technological Progression in Light of Curve Finance Hack

A hacker who drained several pools on Curve Finance returned approximately 5,495 Ether (ETH), worth around $10 million. This surprising development happened after an agreement wherein the hacker received a bounty. This raises questions around blockchain security, revealing its vulnerabilities but also demonstrating its resilience in what JPEG’d’s team refers to as a “white-hat rescue.”