According to on-chain data, the victim's wallet had received ether via two separate wallets from the Binance deployer in 2019.
"The user made a withdrawal from Binance, which was valid and authorized on our platform. Unfortunately, the DeFi wallet that received the withdrawal was compromised. While this is outside of our scope of control, Binance's security team is looking into the matter and we will provide assistance where we can," a Binance spokesperson told CoinDesk.
A deployer wallet is a wallet used to create smart contracts. Binance's deployer wallet has been inactive since December, 2020.
THORChain has become an epicenter for hack-related activity over the course of the year – in June hackers that stole $35 million from Atomic Wallet used THORChain to conceal the ill-gotten gains, and last month THORSwap put its platform into maintenance mode after a series of FTX hack-related trades.
Exchanges are often the target of hackers. Last week Poloniex lost $114 million after a hack breached that exchange's hot wallets.
UPDATE (November 13, 2023, 14:45 UTC): Adds comment from Binance spokesperson.
CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. The Bullish group is majority-owned by Block.one; both companies have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk offers all employees above a certain salary threshold, including journalists, stock options in the Bullish group as part of their compensation.