Inside the $44.7M BingX Exploit: What Went Wrong?
Contents
On September 19th, BingX, a prominent centralised cryptocurrency exchange, suffered a significant security breach, leading to the loss of $44.7 million from its hot wallets.
The attack was orchestrated by a highly sophisticated hacking group that swiftly transferred the stolen funds across various blockchain networks, making it more challenging to trace and recover the assets.
BingX is a leading cryptocurrency exchange, serving over 10 million users worldwide. BingX offers diversified products and services, including spot, derivatives, copy trading, and asset management – all designed for the evolving needs of users, from beginners to professionals. BingX is committed to providing a trustworthy platform that empowers users with innovative tools and features to elevate their trading proficiency.
Drained BingX wallet addresses: 0x6c69fa64EC451b1Bc5b5FBAa56CF648a281634Be 0xa88f86E5685FCa7C5D6de0e4D944875b007137b5
Attackers' addresses (On Ethereum Chain) 0xF7e8033366166f92eb477B7B38e0D47d47b43326 0x940362B46faf7DF48Af1c8989d809F50466B5fCA 0x719981cf7D1a1dC681a1cf0C6B1eeeE090D0FEd6 0x1dd7daf089c16856155fefd7e2170966bb6b3aee 0xf26e64ef4300ca027d2ffedd7d765d7a3906091c 0xb77A4A9678315775C4ba89F18f84f87538E748F5 0xCFc14fa81226074036622976D95897fF84b58d66
(On BNB chain) 0xb0146aec3593410c8307b570af69adf4d74678b3 0x940362b46faf7df48af1c8989d809f50466b5fca 0x1dd7daf089c16856155fefd7e2170966bb6b3aee
The root cause of the security breach at BingX was likely related to unauthorized access to the …
The attack was orchestrated by a highly sophisticated hacking group that swiftly transferred the stolen funds across various blockchain networks, making it more challenging to trace and recover the assets.
BingX is a leading cryptocurrency exchange, serving over 10 million users worldwide. BingX offers diversified products and services, including spot, derivatives, copy trading, and asset management – all designed for the evolving needs of users, from beginners to professionals. BingX is committed to providing a trustworthy platform that empowers users with innovative tools and features to elevate their trading proficiency.
Drained BingX wallet addresses: 0x6c69fa64EC451b1Bc5b5FBAa56CF648a281634Be 0xa88f86E5685FCa7C5D6de0e4D944875b007137b5
Attackers' addresses (On Ethereum Chain) 0xF7e8033366166f92eb477B7B38e0D47d47b43326 0x940362B46faf7DF48Af1c8989d809F50466B5fCA 0x719981cf7D1a1dC681a1cf0C6B1eeeE090D0FEd6 0x1dd7daf089c16856155fefd7e2170966bb6b3aee 0xf26e64ef4300ca027d2ffedd7d765d7a3906091c 0xb77A4A9678315775C4ba89F18f84f87538E748F5 0xCFc14fa81226074036622976D95897fF84b58d66
(On BNB chain) 0xb0146aec3593410c8307b570af69adf4d74678b3 0x940362b46faf7df48af1c8989d809f50466b5fca 0x1dd7daf089c16856155fefd7e2170966bb6b3aee
The root cause of the security breach at BingX was likely related to unauthorized access to the …
IoC
b0146aec3593410c8307b570af69adf4d74678b3
F7e8033366166f92eb477B7B38e0D47d47b43326
6c69fa64EC451b1Bc5b5FBAa56CF648a281634Be
a88f86E5685FCa7C5D6de0e4D944875b007137b5
940362b46faf7df48af1c8989d809f50466b5fca
940362B46faf7DF48Af1c8989d809F50466B5fCA
b77A4A9678315775C4ba89F18f84f87538E748F5
1dd7daf089c16856155fefd7e2170966bb6b3aee
f26e64ef4300ca027d2ffedd7d765d7a3906091c
CFc14fa81226074036622976D95897fF84b58d66
719981cf7D1a1dC681a1cf0C6B1eeeE090D0FEd6
F7e8033366166f92eb477B7B38e0D47d47b43326
6c69fa64EC451b1Bc5b5FBAa56CF648a281634Be
a88f86E5685FCa7C5D6de0e4D944875b007137b5
940362b46faf7df48af1c8989d809f50466b5fca
940362B46faf7DF48Af1c8989d809F50466B5fCA
b77A4A9678315775C4ba89F18f84f87538E748F5
1dd7daf089c16856155fefd7e2170966bb6b3aee
f26e64ef4300ca027d2ffedd7d765d7a3906091c
CFc14fa81226074036622976D95897fF84b58d66
719981cf7D1a1dC681a1cf0C6B1eeeE090D0FEd6