OKX and SlowMist are currently investigating a sophisticated exploit that resulted in the theft of millions of dollars from two user accounts.
The incident occurred on June 9 and involved a SIM swap attack, highlighting concerns about the security vulnerabilities associated with SMS-based two-factor authentication (2FA) systems.
The investigation is shedding light on the increasing complexity of phishing attacks and the ongoing security challenges faced by the crypto and Web3 communities.
According to SlowMist founder Yu Xian, the attackers were able to create a new API key with withdrawal and trading permissions, allowing them to steal assets worth millions of dollars. The breach was detected when a suspicious SMS notification originated from Hong Kong, leading to the creation of the unauthorized API key.
It appears that the exploiters were able to bypass OKX’s 2FA system by exploiting the lower-security SMS verification process, enabling them to whitelist withdrawal addresses and carry out malicious activities.
Despite ongoing investigations, it has been suggested that the primary vulnerability may not have been OKX’s 2FA mechanism, but rather the attackers’ ability to circumvent security measures by leveraging the SMS verification process.
One of the victims of the theft expressed gratitude for being compensated by the OKX team.
This incident underscores the growing sophistication of phishing attacks within the crypto community. For instance, a Chinese trader recently lost $1 million in a scam involving a compromised Google Chrome plugin that allowed hackers to access the trader’s Binance account and make unauthorized trades and withdrawals.
Phishing attacks have been on the rise, with notable incidents like the data breach suffered by CoinGecko’s third-party email management platform, GetResponse, resulting in the distribution of phishing emails to over 23,000 users.
In response to these threats, CoinGecko has provided users with guidelines to protect themselves from scams, emphasizing the importance of avoiding unfamiliar domains and refraining from clicking on unsolicited links.
The increasing use of AI-enhanced scam tactics, including deep fake technology, further complicates crypto security, as scammers impersonate well-known figures like Elon Musk to promote fraudulent investment schemes.
Overall, the rise of sophisticated phishing attacks highlights the crucial need for enhanced security protocols to safeguard digital assets and protect users from falling victim to malicious actors in the crypto space.
Subscribe to Updates
Get the latest creative news from FooBar about art, design and business.