Investigators are on the trail of hackers who spirited away more than US$600 million in cryptocurrency last week, watching the money as it moves around a system that critics call the Wild West of finance.
But they are playing catch-up: the gaming company that got scammed apparently did not even notice for six days.
The hack is one of the biggest to hit the crypto world, raising huge questions about security in an industry that only recently burst into the mainstream thanks to celebrity promotions and promises of untold wealth.
Photo: REUTERS
The sector has been beset by scams and hacks.
This week’s theft from the makers of Axie Infinity, a game where players can earn crypto through game play or trading their avatars, came just weeks after thieves made off with around US$320 million in a similar attack.
“We are seeing more hacks because there is more money in blockchain,” said Roman Bieda of Coinfirm, a crypto security company, referring to the technology that underpins cryptocurrencies.
Photo: Bloomberg
The industry should have learned the lessons from previous attacks but security was still being sacrificed for profit, he added, labelling Axie’s failure to notice the hack a “huge deficiency.”
REFUNDS PROMISED
The Axie Infinity attackers exploited weaknesses in the set-up put in place by the Vietnam-based firm behind the game, Sky Mavis.
The company had to solve a problem: the ethereum blockchain, where transactions in the ether cryptocurrency are logged, is relatively slow and expensive to use.
To allow Axie Infinity players to buy and sell at speed, the firm created an in-game currency and a sidechain with a bridge to the main ethereum blockchain.
The result was faster and cheaper — but ultimately less secure.
Hackers were able to take over the sidechain and empty its coffers apparently without anyone realizing, something experts say would be all but impossible on the ethereum blockchain.
The firm said it would recover or reimburse the funds, easing the anxiety of gamers — particularly in the Philippines where hundreds of thousands play Axie Infinity.
“Some of the Philippine community right now are going crazy because of what happened,” said Dominic Lumabi, a gamer from Manila.
Some feared the game would close and money would be lost, he said, adding that he was relieved Sky Mavis was being transparent.
But the firm faces a tough challenge to get the money back.
‘CONSTANT BATTLE’
Security firms are monitoring the stolen money as it moves through various wallets, as accounts are called in the crypto-world.
Blockchain data platform Chainalysis is helping Sky Mavis track the money, and Elliptic said it was investigating and alerting its clients.
Bieda from Coinfirm said that sooner or later the perpetrators would be traced.
“The bigger the amount, the harder it is to hide,” he said.
But even though investigators can see where the money is, there are tricks the thieves can use.
They can employ software that mixes the stolen money with legitimate streams, use exchanges with lax rules, or move their funds to a jurisdiction with no rules at all such as North Korea or Russia.
Any of those moves makes it much easier to transfer the cryptocurrency into everyday, spendable cash.
It is a “constant battle” between the thieves and those trying to stop them, said Bieda.
“Adoption (of cryptocurrency) is growing, more protocols and more solutions are created, but the pursuit of cheap transactions and profit means the industry sometimes... forgets about security.”
As mega K-pop group BTS returns to the stage after a hiatus of more than three years, one major market is conspicuously missing from its 12-month world tour: China. The omission of one of the group’s biggest fan bases comes as no surprise. In fact, just the opposite would have been huge news. China has blocked most South Korean entertainment since 2016 under an unofficial ban that also restricts movies and the country’s popular TV dramas. For some Chinese, that means flying to Seoul to see their favorite groups perform — as many were expected to do for three shows opening
A recent report from the Environmental Management Administration of the Ministry of Environment highlights a perennial problem: illegal dumping of construction waste. In Taoyuan’s Yangmei District (楊梅) and Hsinchu’s Longtan District (龍潭) criminals leased 10,000 square meters of farmland, saying they were going to engage in horticulture. They then accepted between 40,000 and 50,000 cubic meters of construction waste from sites in northern Taiwan, charging less than the going rate for disposal, and dumped the waste concrete, tile, metal and glass onto the leased land. Taoyuan District prosecutors charged 33 individuals from seven companies with numerous violations of the law. This
Apr. 13 to Apr. 19 From 17th-century royalty and Presbyterian missionaries to White Terror victims, cultural figures and industrialists, Nanshan Public Cemetery (南山公墓) sprawls across 95 hectares, guarding four centuries of Taiwan’s history. Current estimates show more than 60,000 graves, the earliest dating to 1642. Besides individual tombs, there are also hundreds of family plots, one of which is said to contain around 1,000 remains. As the cemetery occupies valuable land in the heart of Tainan, the government in 2018 began asking families to relocate the graves to make way for development. That
Taiwan’s semiconductor industry consumes electricity at rates that would strain most national grids. Taiwan Semiconductor Manufacturing Co (TSMC) alone accounted for more than 9 percent, or 2,590 megawatts (MW), of the nation’s power demand last year. The factories that produce chips for the world’s phones and servers run around the clock. They cannot tolerate blackouts. Yet Taiwan imports 97 percent of its energy, with liquefied natural gas reserves measured in days. Underground, Taiwan has options. Studies from National Taiwan University estimate recoverable geothermal resources at more than 33,000 MW. Current installed capacity stands below 10 MW. OBSTACLES Despite Taiwan’s significant geothermal potential, the
RSS