$534 million crypto heist won’t be the last
Coincheck is refunding its customers but not everyone will be so lucky.
It was no surprise to learn over the weekend that US$534 million worth of cryptocurrency was stolen from major Japanese exchange Coincheck.
Whenever there are big piles of money, criminals will follow. That was true when robbers used to target bank branches in remote areas and rob them using firearms, and it remains true when the criminal weapon of choice has switched to coding your way round vulnerabilities in a crypto-wallet.
During the attack on Coincheck, some 523 million NEM were transferred to an external account. The estimated value of the stolen cryptocurrency was around 58 billion yen, with 260,000 customers said to be affected.
Coincheck has said that it will refund 46 billion yen of that to customers, so anyone who has been speculating in NEM won't take a total bath. Coincheck also suspended trading in all currencies other than bitcoin following the attack.
The cause of the vulnerability hasn't yet been revealed, though reports have noted that the virtual funds were stored in an Internet-accessible "hot wallet", rather than a potentially more secure "cold" wallet.
The incident serves as a stark reminder that as interest in cryptocurrencies grows, attacks on service providers and currency holders will also grow. Exchanges that don't have significant financial backing and significant technical skills may find the going tough. And even with secure infrastructure, individual traders will remain vulnerable, because they're human and humans do stupid things that weaken security quite often.
Vulnerabilities exist everywhere. As we reported last week, around 10% of funds generated through initial coin offerings typically end up stolen.
Angus Kidman's Findings column looks at new developments and research that help you save money, make wise decisions and enjoy your life more. It appears regularly on finder.com.au.
- What do you get when you cross the sharing economy with blockchain?
- China proposes law to de-anonymise blockchain users and censor content
- Clarke-endorsed Global Tech crypto co. down due to “ongoing negativity,” ASIC
- Google Pixel 3 review: Smaller is better
- Google Pixel 3XL review: Pure Google in a big package
Picture: Ovidiu Hrubaru/Shutterstock