Nexo

Start Earning Up to 16% Interest Automatically

Learn More
Home » Technology » UPDATED: Binance ‘Hack’ Transactions Reversed, Trading Reinstated

UPDATED: Binance 'Hack' Transactions Reversed, Trading Reinstated

by
Binance Suspends withdrawals

Share this article

Binance, the world’s largest crypto exchange, temporarily froze withdrawals today after a suspected API hack sold off customer coins to buy a previously little-known coin, VIA, at a massively-inflated price.

UPDATE: Binance has posted an explanation of the phishing attack, noting that it was carefully premeditated and preceded the execution of the trades by several weeks. As noted in our article on scams, a hard-to-detect method of redirecting unwitting users to a malicious website was traced as the culprit. Binance says that all funds have been returned, and all trading is restored.

UPDATE: “All deposit, trading and withdrawal are resumed.” Note that Changpeng Zhao refers to ‘hackers’ in this statement from his Twitter account.


UPDATE: ‘irregular’ trades will be reversed, says CEO of Binance.


UPDATE: Changpeng Zhao, CEO of Binance, says “all funds are safe”.

Via’s current market cap is under $80M, but trading in the coin exceeded $185M in the 24 hours including the suspected attack. Although Viacoin published a Medium update today, nothing in the article would seem to explain such a dramatic escalation in the VIA price. On Binance, the price soared from ~0.00025 BTC to ~0.018 BTC at one point, an increase of ~7,500%. While exact figures vary according to the source, Blockfolio reported a high of $243.73 and a low of $2.19 for the trading day.

An estimated $46M may have been traded in one minute during the suspected breach.

While details are thin, both the official Binance Telegram group (English) and the Reddit sub posted messages from an admin named “Symbiotic_BNB” that said:

“We are investigating reports of some users having issues with their funds. Our team is aware and investigating the issue as we speak. Please remain patient and we will provide an update as quickly as possible.”

Binance pinned statement reddit

The most recent update available says:

Binance update 2 on Reddit

“We are investigating reports of some users having issues with their funds. Our team is aware and investigating the issue as we speak.

As of this moment, the only confirmed victims have registered API keys (to use with trading bots or otherwise). There is no evidence of the Binance platform being compromised.

Please remain patient and we will provide an update as quickly as possible.

Edit: Withdrawals are temporarily disabled at this time.”

Meanwhile, a reliable source who wished to remain anonymous told Crypto Briefing that a trading bot was to blame; the source described “a bot that some were using to trade automatically maliciously traded all alts into BTC and then bought VIA. If you weren’t using the BOT you are not affected.”

Crypto Briefing team members were able to confirm with third parties that Binance withdrawals in several prominent coins were unavailable.

Speculation has centred on an API breach, as many of the reports of unauthorized sales are from commentators who had an API enabled (even if trading through the API was disabled).

There are no indications of a 2-factor attack or a compromised app at this time.

A flash crash in Bitcoin and almost all altcoins seemed to coincide with the appearance of the breach. As of the time of publication, most of the top 50 coins were down 10% over the past 24 hours.

The mod team on Reddit is a disparate group of active Redditors, and persons or accounts with low karma. The Symbiotic_BNB account is only one month old.

This article will be updated as more details emerge.

Image below: VIA / BTC on Binance today.

Binance BTC VIA Chart 3.7.18

Image below: VIA / BTC on Bittrex today.

BTC VIA Binance

Share this article

The information on or accessed through this website is obtained from independent sources we believe to be accurate and reliable, but Decentral Media, Inc. makes no representation or warranty as to the timeliness, completeness, or accuracy of any information on or accessed through this website. Decentral Media, Inc. is not an investment advisor. We do not give personalized investment advice or other financial advice. The information on this website is subject to change without notice. Some or all of the information on this website may become outdated, or it may be or become incomplete or inaccurate. We may, but are not obligated to, update any outdated, incomplete, or inaccurate information.

Crypto Briefing may augment articles with AI-generated content created by Crypto Briefing’s own proprietary AI platform. We use AI as a tool to deliver fast, valuable and actionable information without losing the insight - and oversight - of experienced crypto natives. All AI augmented content is carefully reviewed, including for factural accuracy, by our editors and writers, and always draws from multiple primary and secondary sources when available to create our stories and articles.

You should never make an investment decision on an ICO, IEO, or other investment based on the information on this website, and you should never interpret or otherwise rely on any of the information on this website as investment advice. We strongly recommend that you consult a licensed investment advisor or other qualified financial professional if you are seeking investment advice on an ICO, IEO, or other investment. We do not accept compensation in any form for analyzing or reporting on any ICO, IEO, cryptocurrency, currency, tokenized sales, securities, or commodities.

See full terms and conditions.