Multichain Hack Worsens as Loss of Funds Reaches $3M: Report
Users of the cross-chain bridge say that the company is not providing clear information or enough support.
Jan 20, 2022 at 2:06 a.m. UTC:format(webp)/cloudfront-us-east-1.images.arcpublishing.com/coindesk/OVTH7KBBMRFMFBTYNUIOWPE5G4.jpeg)
Hackers have continued to exploit a vulnerability in the cross-chain bridge Multichain about three days after the weakness surfaced. They have stolen about $3 million in cryptocurrency, according to a report by the online publication Vice.
"The hack against Multichain users keeps getting worse," Vice reporter Lorenzo Franceschi-Bicchierai tweeted.
A number of Multichain users have said on social media platforms, including the company's Telegram channel, that Multichain is not providing clear information on the ongoing problems or enough support.
"I can’t be the only one who’s incredibly confused by @MultichainOrg’s messaging here," Chainlink commentator and podcaster ChainLinkGod.eth 2.0 tweeted to his more than 130,000 followers. He included screenshots from a Medium post indicating that "funds were safe and unsafe at the same time"
The saga started earlier this week when Multichain instructed its users to remove approvals for six tokens, warning that otherwise their assets would be exposed to a security vulnerability. The tokens were WETH, PERI, OMT, WBNB, MATIC and AVAX. Multichain tweeted on Tuesday that hackers had siphoned about $1.4M in wrapped ether from users.
The company has pinned a link to the Medium post on its Twitter account outlining how to remove the approvals.
Multichain, formerly Anyswap, raised $60 million in December in a seed funding round that was led by Binance Labs. Public data shows that Multichain has about $8.8 billion in total value locked.
:format(webp)/s3.amazonaws.com/arc-authors/coindesk/fef307fe-e7ed-4f5a-badc-d7a5744bbd1e.png)
James Rubin was CoinDesk's U.S. news editor based on the West Coast.