ETH multisig hack
Image: ETH holders right now
The bug in Parity 1.5+ has been fixed - see it on github.
Swarm: A swift response from a whitehat hacker group used the same exploit to drain many other project’s parity multisig wallets, in order to protect them from theft. This group was able to save over 377,000 ETH. Unfortunately the 44,055 ETH that was in Swarm City’s wallet is gone.
Black hat hacker wallet address with stolen ether: https://etherscan.io/address/0xb3764761e297d6f121e79c32a65829cd1ddb4d32
White hat wallet address with preserved ether: https://etherscan.io/address/0x1dba1131000664b884a1ba238464159892252d3a
There is a reason for the selloff, if you are looking for one: Parity 1.5+ security alert.
Some multisig wallets with contracts for ICOs created with certain versions of Parity are vulnerable and getting drained.
So far all ICO money for Edgeless Casino, aeternity and swarm.city is gone. It is 153k ETH which was worth about $32M when the heist started. At the moment it is around $30M. This is where the coins were sent to.
The bug has not been fixed yet so the draining might be going to continue for a while longer, unless money is moved out of vulnerable wallets in time.
The vulnerability is a serious one, allegedly one only needs the public key and certain kind of metadata and that is enough to regenerate the wallet.
Read about our content policy.
About the author
Written by KarlVonBahnhof
KarlVonBahnhof also on Reddit, Chris belongs to the crypto trader class of 2013. Located in the Americas most of the time, you're most likely to meet at r/BitcoinMarkets though.
Opinions are author's own.