Parity Wallet Hacker Cashes out $90,000 in Stolen Ether
Perpetrators who exploited a flaw in a popular ethereum wallet software yesterday have taken steps to sell their stolen funds.
Jul 20, 2017 at 5:55 p.m. UTC:format(webp)/cloudfront-us-east-1.images.arcpublishing.com/coindesk/IC7YWEOH5BFKLN7S5VXJJZ4RRU.jpg)
Roughly $90,000 in stolen ether confiscated as a result of a bug in a popular ethereum wallet software service yesterday have been cashed out, blockchain data shows.
As reported by CoinDesk, a total of 153,000 ethers were drained on July 19 due to a security bug in multi-signature wallet software offered by the startup, UK-based Parity Technologies. In a blog post yesterday, Parity went so far as to warn users that the bug was "critical," advising them to take steps to safeguard their funds while the issue was resolved.
However, the stolen funds continue to move. As of press time, 70,000 ethers have exited the hacker's address in seven consecutive transactions, each worth 10,000 ethers.
Data further shows the first transaction (which through two subsequent addresses), successfully cashed out 400 ethers via a cryptocurrency exchange service called Changelly. The price of ether around the transaction time was around $220, making an outflow worth nearly $90,000.
subsequently said in a Reddit thread that it has blacklisted the hacker's root address, but that the amount that has already been exchanged is permanently gone. The startup's involvement is also notable, as it provides a service that matches buyers and sellers of cryptocurrencies with exchanges, calculating the best rates for the user.
As a result, it does not hold funds or take customer information.
The startup further said the hacker used the Tor network to connect to its service, meaning it was not able to trace the IP addresses or the fiat currencies the funds were exchange for.
"It's a dead end," Changelly posted on Reddit.
So far, the commerce platform Swarm City and smart contract platform æternity, both confirmed the loss of over 120,000 ethers from their ends. A third suspected victim, Edgeless Casino, has yet to offer public comment.
Piggybank image via Shutterstock
DISCLOSURE
Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.
The leader in news and information on cryptocurrency, digital assets and the future of money, CoinDesk is a media outlet that strives for the highest journalistic standards and abides by a strict set of editorial policies. CoinDesk is an independent operating subsidiary of Digital Currency Group, which invests in cryptocurrencies and blockchain startups. As part of their compensation, certain CoinDesk employees, including editorial employees, may receive exposure to DCG equity in the form of stock appreciation rights, which vest over a multi-year period. CoinDesk journalists are not allowed to purchase stock outright in DCG.
:format(webp)/downloads.coindesk.com/arc/failsafe/user/1x1.png)
Learn more about Consensus 2024, CoinDesk’s longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.