Investigators are on the trail of hackers who spirited away more than US$600 million in cryptocurrency last week, watching the money as it moves around a system that critics call the Wild West of finance.
But they are playing catch-up: the gaming company that got scammed apparently did not even notice for six days.
The hack is one of the biggest to hit the crypto world, raising huge questions about security in an industry that only recently burst into the mainstream thanks to celebrity promotions and promises of untold wealth.
Photo: REUTERS
The sector has been beset by scams and hacks.
This week’s theft from the makers of Axie Infinity, a game where players can earn crypto through game play or trading their avatars, came just weeks after thieves made off with around US$320 million in a similar attack.
“We are seeing more hacks because there is more money in blockchain,” said Roman Bieda of Coinfirm, a crypto security company, referring to the technology that underpins cryptocurrencies.
Photo: Bloomberg
The industry should have learned the lessons from previous attacks but security was still being sacrificed for profit, he added, labelling Axie’s failure to notice the hack a “huge deficiency.”
REFUNDS PROMISED
The Axie Infinity attackers exploited weaknesses in the set-up put in place by the Vietnam-based firm behind the game, Sky Mavis.
The company had to solve a problem: the ethereum blockchain, where transactions in the ether cryptocurrency are logged, is relatively slow and expensive to use.
To allow Axie Infinity players to buy and sell at speed, the firm created an in-game currency and a sidechain with a bridge to the main ethereum blockchain.
The result was faster and cheaper — but ultimately less secure.
Hackers were able to take over the sidechain and empty its coffers apparently without anyone realizing, something experts say would be all but impossible on the ethereum blockchain.
The firm said it would recover or reimburse the funds, easing the anxiety of gamers — particularly in the Philippines where hundreds of thousands play Axie Infinity.
“Some of the Philippine community right now are going crazy because of what happened,” said Dominic Lumabi, a gamer from Manila.
Some feared the game would close and money would be lost, he said, adding that he was relieved Sky Mavis was being transparent.
But the firm faces a tough challenge to get the money back.
‘CONSTANT BATTLE’
Security firms are monitoring the stolen money as it moves through various wallets, as accounts are called in the crypto-world.
Blockchain data platform Chainalysis is helping Sky Mavis track the money, and Elliptic said it was investigating and alerting its clients.
Bieda from Coinfirm said that sooner or later the perpetrators would be traced.
“The bigger the amount, the harder it is to hide,” he said.
But even though investigators can see where the money is, there are tricks the thieves can use.
They can employ software that mixes the stolen money with legitimate streams, use exchanges with lax rules, or move their funds to a jurisdiction with no rules at all such as North Korea or Russia.
Any of those moves makes it much easier to transfer the cryptocurrency into everyday, spendable cash.
It is a “constant battle” between the thieves and those trying to stop them, said Bieda.
“Adoption (of cryptocurrency) is growing, more protocols and more solutions are created, but the pursuit of cheap transactions and profit means the industry sometimes... forgets about security.”
The US war on Iran has illuminated the deep interdependence of Asia on flows of oil and related items as raw materials that become the basis of modern human civilization. Australians and New Zealanders had a wake up call. The crisis also emphasizes how the Philippines is a swatch of islands linked by jet fuel. These revelations have deep implications for an invasion of Taiwan. Much of the commentary on the Taiwan scenario has looked at the disruptions to world trade, which will be in the trillions. However, the Iran war offers additional specific lessons for a Taiwan scenario. An insightful
It’s only half the size of its more famous counterpart in Taipei, but the Botanical Garden of the National Museum of Nature Science (NMNS, 國立自然科學博物館植物園) is surely one of urban Taiwan’s most inviting green spaces. Covering 4.5 hectares immediately northeast of the government-run museum in Taichung’s North District (北區), the garden features more than 700 plant species, many of which are labeled in Chinese but not in English. Since its establishment in 1999, the site’s managers have done their best to replicate a number of native ecosystems, dividing the site into eight areas. The name of the Coral Atoll Zone might
Polling data often confirms what we expect, but sometimes it throws up surprises. When examined over time, some patterns appear that speak to something bigger going on. In this column, whenever possible, Formosa’s polls are used. Despite the sometimes cringeworthy antics of Formosa’s Chairman, Wu Tzu-Chia (吳子嘉), the data produced includes detailed breakdowns crucial for analysis. It has also been conducted monthly 11-12 times a year for many years with many of the same questions, allowing for analysis over time. When big shifts do occur between one month and the next it is usually in response to some event in
April 6 to April 13 Few expected a Japanese manga adaptation featuring four tall, long-haired heartthrobs and a plucky heroine to transform Taiwan’s television industry. But Meteor Garden (流星花園) took the nation by storm after premiering on April 12, 2001, single-handedly creating the “idol drama” (偶像劇) craze that captivated young viewers across Asia. The show was so successful that Japan produced its own remake in 2005, followed by South Korea, China and Thailand. Other channels quickly followed suit, with more than 50 such shows appearing over the following two years. Departing from the melodramatic
RSS