Tudo aconteceu na sexta feira, A KickICO divulgou uma violação de segurança, onde relataram que os atacantes tinham acedido às carteiras digitais onde roubaram mais de 70 milhões de tokens (aproximadamente US $7.7 milhões).
O incidente ocorreu no dia 26 de julho, às 9h04 da UTC, explicou o CEO da KickICO Anti Danilevski . Também disse que a equipa de segurnança prontamente soube da violação porque algumas vitimas se queixaram de imediato.
“On July 26 at 9:04 (UTC) KICKICO has experienced a security breach, which resulted in the attackers gaining access to the account of the KICK smart contract — tokens of the KICKICO platform. The team learned about this incident after the complaints of several victims, who did not find tokens worth 800 thousand dollars in their wallets.” reads the data breach notification published by the company.
A empresa anuncionou que a partir de sexta feira a situação estava sob controle e que o smart contract foi novamente reposto. A KickICO anunciou que devolverá todos os tokens KICK roubados aos seus legítimos proprietários, por isso, convidou-os a se manifestarem via e-mail [email protected].
KICKICO guarantees to return all tokens to KickCoin holders. We apologize for the inconveniences,” Danilevski said.
A empresa rapidamente iniciou uma investigação sobre a violação de segurança. A equipa interna descobriu que os atacantes conseguiram obter acesso à chave privada da plataforma KickICO usada pelos developers para gerir o contrato inteligente de token KICK.
Os atacantes usaram a chave para destruir 40 tokens legítimos e criaram de seguida outros tokens maliciosos que estavam a controlar (40 tokens). Usando esse truque, o número total de tokens não mudou e as medidas de segurança em vigor não conseguiram detectar a atividade fraudulenta.
“The hackers gained access to the private key of the owner of the KickCoin smart contract. In order to hide the results of their activities, they employed methods used by the KickCoin smart contract in integration with the Bancor network: hackers destroyed tokens at approximately 40 addresses and created tokens at the other 40 addresses in the corresponding amount. In result, the total number of tokens in the network has not changed. ” continues the notification.
Felizmente toda a comunidade contribuiu para a deteção desta violação de segurança.
After the incident, the KICK token, listed on the 136th position on Coinmarketcap, has lost 1.87% in the last 24 hours. However, the move may be influenced by the bearish mood of the entire crypto market after the SEC rejected a Bitcoin ETF proposed by the Winklevoss twins.” reported the website cryptovest.com.
Pedro Tavares is a professional in the field of information security working as an Ethical Hacker/Pentester, Malware Researcher and also a Security Evangelist. He is also a founding member at CSIRT.UBI and Editor-in-Chief of the security computer blog seguranca-informatica.pt.
In recent years he has invested in the field of information security, exploring and analyzing a wide range of topics, such as pentesting (Kali Linux), malware, exploitation, hacking, IoT and security in Active Directory networks. He is also Freelance Writer (Infosec. Resources Institute and Cyber Defense Magazine) and developer of the 0xSI_f33d – a feed that compiles phishing and malware campaigns targeting Portuguese citizens.
Read more here.