Coinrail, a relatively less known South Korean exchange, was hacked on June 9, 2018, for relatively unknown cryptocurrencies. The attacker(s) managed to drill a $40 million hole in the pockets of crypto investors.
The cryptocurrencies that attacker was able to sneak in were recently launched ICO coins & tokens, the exchange confirmed.
Coinrail, a top 100 exchange by volume, confirmed the intrusion on 9th June 2018 in a tweet.
해킹공격시도로 인한 시스템 점검중입니다. 일부코인(펀디엑스,NPXS)이 확인되었으며 추가적인 코인피해가 있는지 여부를 확인중입니다. 추후 자세한 사항은 재공지하겠습니다 / There has been an cyber intrusion in our system. We're confirming it and some coins(Pundi X, NPXS) are confirmed.
— coinrail (@Coinrail_Korea) June 10, 2018
Here is the full transcript of the announcement:
As per the alleged attacker’s Ethereum address, tokens such as Pundi X (NPXS), Aston (ATX), and Enper (NPER) were withdrawn. The estimated worth of lost tokens at current price is estimated to be a gargantuan $40 million.
Coinrail has frozen all accounts, and there is no trading allowed for these tokens as of now.
Soon after the news of the hack broke, the crypto market started dwindling pushing Bitcoin to one of its all-time lows again. Similarly, Ethereum, Bitcoin Cash, Ripple, etc., have all taken a hit too.
Even though the hacked amount was not too much in comparison to other hacks that we have seen thus far in the cryptosphere, it was enough to deal a big blow to the crypto market.
South Korea Home To 3 Hacks In The Last 12 Months
The June 9 incident was the third hack to happen on a South Korean exchange in the last 12 months.
In July 2017, Bithumb lost its critical customer data of more than 30,000 users, but there was no direct hack into the users crypto accounts.
Also, in the December of 2017, YouBit exchange was hacked, losing 17% of their assets, or 4000 BTCs.
Coinrail is reported to lose 30% of its assets in relatively less known cryptos, but the $40 million loss is a lot for retail investors of crypto.
The investigation into the matter is on, but there is no news from Coinrail as to how they are going to refund their customers.
Any type of hack in crypto can be crippling for the whole industry, especially a decentralized one. Also, this is ringing alarm again for investors who don’t take our advice seriously – ‘of not keeping their cryptoassets on centralized exchanges’.
In this case, too, ERC20 tokens that were hacked could have been stored on MyEtherWallet or Ledger Nano S like self-hosted wallets. Investors could have thus safeguarded themselves against the loss.
I repeat, do not keep your Bitcoin/Ethereum/ERC20 tokens on any centralized exchange in the world because they are not safe. Always rely on self-hosted crypto wallets where you control your private keys such as:
Like this post? Do share it with your friends & family to keep them informed!
Further suggested readings: