Cryptocurrency
DeFi
Exchanges
Stablecoins
NFTs
Wallets
Bitcoin
Ethereum
Tokens
ICOs
IEOs
Technology
Crypto
Banking
Supply Chain
Security
Healthcare
Mining
AI
Advertising
Gaming
Retail
Education
Analytics
Hosting
Business
Partnerships
Investments
Adoption
Acquisitions
Conferences
IPOs
Legal
Lawsuits
Patents
Politics
Fraud
Research
Guides
Opinion
Cryptocurrency
Technology
Business
Legal
Politics
Fraud
Research
Guides
Opinion
The Chain Bulletin logo

Localbitcoins Suffers Security Breach

  • Users were quick to comment on social media that apparently navigating to the site’s forum page during the attack led users to a phishing page which also requested two factor authentication data.
  • Thus given a prompt reaction from the hackers, 2FA was unable to protect the users.
by Nikolay Nikov January 26, 2019, 10:04 PM
Localbitcoins Suffers Security Breach

Popular over-the-counter trading platform Localbitcoins has just announced that a security breach has been identified on their platform. The statement reads:

“We would like to inform that today 26.01.2019 at approximately 10:00:00 UTC, LocalBitcoins has detected a security vulnerability… We were able to identify the problem, which was related to a feature powered by a third party software, and stop the attack. At the moment, we are determining the correct number of users affected – so far six cases have been confirmed. For security reasons, the forum feature has been disabled until further notice… Your LocalBitcoins accounts are currently safe to log in and use – we encourage you to enable Two-factor authentication, if you have not yet.”

Users were quick to comment on social media that apparently navigating to the site’s forum page during the attack led users to a phishing page which also requested two factor authentication data.

Thus given a prompt reaction from the hackers, 2FA was unable to protect the users.

Social media users report that currently the hacker’s address has a balance worth approximately $28,000.

Considering the recent failure of Cryptopia hackers to liquidate stolen funds on Binance, as well as the pseudonymous nature of Bitcoin, it is very likely that the funds on the hacker’s address will universally blacklisted on exchanges. At the time of writing, no outgoing transactions have been performed.

Discussion
Related Coverage
Unibot to Compensate Users Affected by Exploit
  • Popular Telegram bot Unibot, which is used to snipe trades on Uniswap, became a victim of a token approval exploit earlier today, when it was switching to a new router.
  • After confirming the exploit, Unibot assured users that their keys and wallets were safe, and that the project will compensate all affected users.
October 31, 2023, 3:01 PM
unlock

Shutterstock

Balancer Exploited After Giving Warning
  • DeFi protocol Balancer confirmed it was exploited almost a week after disclosing a critical vulnerability affecting several of its boosted pools.
  • The platform did its best to mitigate some of the risks but was unable to pause the affected pools, and an estimated $980,000 in DAI were stolen in an attack.
Kroll Data Breach Compromises FTX, BlockFi Customer Information
  • A cyber security incident at bankruptcy service provider Kroll has resulted in the exposure of “non-sensitive” customer data for claimants involved in the FTX and BlockFi cases.
  • Both companies confirmed that account passwords, systems, and funds remained safe, but warned customers to be on the lookout for phishing scams.