Advertisement

Financial Risks of the Blockchain Industry: A Survey of Cyberattacks

  • Aleksandr LazarenkoEmail author
  • Sergey Avdoshin
Conference paper
Part of the Advances in Intelligent Systems and Computing book series (AISC, volume 881)

Abstract

This paper reviews successful cyberattacks on the Blockchain industry. The first successful attack was conducted in 2011. Since then the attention and number of attacks against the Blockchain industry have grown exponentially. Group-IB collected and investigated incidents and has provided analysis below on the main types of successful theft conducted by hackers.

Keywords

Blockchain Cyberattack Cryptocurrency exchange ICO Smart contracts 

References

  1. 1.
    Kharpal, A.: Initial coin offerings have raised $1.2 billion and now surpass early stage VC funding (2017). https://www.cnbc.com/2017/08/09/initial-coin-offerings-surpass-early-stage-venture-capital-funding.html. Accessed 14 Mar 2018
  2. 2.
    The Rise of Cybercrime on Ethereum. https://blog.chainalysis.com/the-rise-of-cybercrime-on-ethereum/. Accessed 14 Mar 2018
  3. 3.
    Li, X.: A survey on the security of blockchain systems. https://www.sciencedirect.com/science/article/pii/S0167739X17318332. Accessed 14 Mar 2018
  4. 4.
    51% Attack. https://www.investopedia.com/terms/1/51-attack.asp. Accessed 14 Mar 2018
  5. 5.
    Transaction Malleability. https://en.bitcoin.it/wiki/Transaction_malleability. Accessed 14 Mar 2018
  6. 6.
    Domain Hijacking. https://en.wikipedia.org/wiki/Domain_hijacking. Accessed 14 Mar 2018
  7. 7.
    Leung, A.: Test attack in krypton, ethereum classic might be next. https://cointelegraph.com/news/test-attack-on-krypton-ethereum-classic-might-be-next. Accessed 14 Mar 2018
  8. 8.
    Mt. Gox shutdown a major blow for Bitcoin. http://www.cbc.ca/news/technology/mt-gox-shutdown-a-major-blow-for-bitcoin-1.2550256. Accessed 14 Mar 2018
  9. 9.
    Norry, A.: The history of the Mt Gox hack: Bitcoin’s biggest heist. https://blockonomi.com/mt-gox-hack/. Accessed 14 Mar 2018
  10. 10.
    Decker, C.: Bitcoin transaction malleability and MtGox. https://arxiv.org/pdf/1403.6676.pdf. Accessed 14 Mar 2018
  11. 11.
    Siegel, D.: Understanding The DAO hack for journalists. https://medium.com/@pullnews/understanding-the-dao-hack-for-journalists-2312dd43e993. Accessed 14 Mar 2018
  12. 12.
    Bitcoinica people hacked again, for ~350K US$ this time. https://www.reddit.com/r/netsec/comments/wi1xf/bitcoinica_people_hacked_again_for_350k_us_this/. Accessed 14 Mar 2018
  13. 13.
    Bter freezes accounts after 7170 Bitcoin theft, offering ~10% bounty. https://www.ccn.com/breaking-bter-freezes-accounts-7170-bitcoin-theft-offering-10-bounty/. Accessed 14 Mar 2018
  14. 14.
    Zhao, W.: $7 million lost in CoinDash ICO hack. https://www.coindesk.com/7-million-ico-hack-results-coindash-refund-offer/. Accessed 14 Mar 2018
  15. 15.
    Russel, J.: Hackers nab $500000 as Enigma is compromised weeks before its ICO. https://techcrunch.com/2017/08/21/hack-enigma-500000-ico/. Accessed 14 Mar 2018
  16. 16.
    Warning, Enigma website and slack probably hacked. https://www.reddit.com/r/ethtrader/comments/6v0vei/warning_enigma_website_and_slack_probably_hacked/. Accessed 14 Mar 2018
  17. 17.
    Finchman, N.: CoinTerra hacked. https://mineforeman.com/2014/02/03/cointerra-hacked/. Accessed 14 Mar 2018
  18. 18.
    Important Security Announcement: Steemit CEO Ned Scott. https://steemit.com/steemit/@steemitblog/important-security-announcement-steemit-ceo-ned-scott. Accessed 14 Mar 2018
  19. 19.
  20. 20.
    Blockchain.info Domain Hijacked. https://bitcointalk.org/index.php?topic=1644681.0 Accessed 14 Mar 2018
  21. 21.
    Brook, C.: Classic ether wallet compromised via social engineering. https://threatpost.com/classic-ether-wallet-compromised-via-social-engineering/126657/. Accessed 14 Mar 2018
  22. 22.
    Bitcoins worth $94M stolen in hack on Bitfinex exchange. http://www.cbc.ca/news/technology/bitcoin-bitfinex-hack-1.3705353. Accessed 14 Mar 2018
  23. 23.
    Riley, D.: Mintpal scammer Ryan Kennedy arrested in U.K. over theft of 3700 Bitcoins. https://siliconangle.com/blog/2015/02/23/mintpal-scammer-ryan-kennedy-arrested-in-u-k-over-theft-of-3700-bitcoins/. Accessed 14 Mar 2018
  24. 24.
    796 lost 1000 Bitcoin. https://bitcointalk.org/index.php?topic=938765.0. Accessed 14 Mar 2018
  25. 25.
    Sankin, A.: Everybody gets hacked: a cryptocurrency exchange’s public meltdown. https://www.dailydot.com/business/cryptorush-exchange-blackcoin/. Accessed 14 Mar 2018
  26. 26.
    Picostock hacked, even cold wallet emptied. https://www.reddit.com/r/Bitcoin/comments/1rrnua/picostocks_hacked_even_cold_wallet_emptied/. Accessed 14 Mar 2018
  27. 27.
  28. 28.
    The ShapeShift Hack: Simply Incredible. http://hackingdistributed.com/2016/04/25/shapeshift-hack-simply-incredible/. Accessed 14 Mar 2018
  29. 29.
    DeMartino, I.: Notorious ‘Hacker Group’ allegedly involved in Exco.in theft, owner accuses CCEDK of withholding info. https://cointelegraph.com/news/notorious-hacker-group-involved-in-excoin-theft-owner-accuses-ccedk-of-withholding-info. Accessed 14 Mar 2018
  30. 30.
    Raza, A.: Cryptsy hacked: Bitcoin worth $6 million stolen. https://www.hackread.com/cryptsy-hacked-bitcoin-worth-usd-6-million-stolen/. Accessed 14 Mar 2018
  31. 31.
    Lucky7Coin – PoW/PoS, BonusBlock based on your lucky 7s. https://bitcointalk.org/index.php?topic=295157.0. Accessed 14 Mar 2018
  32. 32.
    South Korean Bitcoin Exchange Yapizon Hacked; $5 Million Stolen. https://www.hackread.com/south-korean-bitcoin-exchange-yapizon-hacked/. Accessed 14 Mar 2018
  33. 33.
    I just got hacked – any help is welcome! (25, 000 BTC stolen). https://bitcointalk.org/index.php?topic=16457.msg214423#msg214423. Accessed 14 Mar 2018
  34. 34.
    Parker, L.: Fourth largest Bitcoin exchange. bithumb, hacked for billions of won. https://bravenewcoin.com/news/fourth-largest-bitcoin-exchange-bithumb-hacked-for-billions-of-won. Accessed 14 Mar 2018
  35. 35.
    Higgins, S.: Details of $5 million bitstamp hack revealed. https://www.coindesk.com/unconfirmed-report-5-million-bitstamp-bitcoin-exchange/. Accessed 14 Mar 2018
  36. 36.
    Bitcoin bank Flexcoin closes after hack attack. https://www.theguardian.com/technology/2014/mar/04/bitcoin-bank-flexcoin-closes-after-hack-attack. Accessed 14 Mar 2018
  37. 37.
  38. 38.
    Bitcoin exchange cavirtex shut’s down after database hack leaves user data exposed. http://bitcoinist.com/bitcoin-exchange-cavirtex-shuts-database-hack-leaves-user-data-exposed/. Accessed 14 Mar 2018
  39. 39.
    Higgins, S.: Gatecoin claims $2 million in Bitcoins and ethers lost in security breach. https://www.coindesk.com/gatecoin-2-million-bitcoin-ether-security-breach/. Accessed 14 Mar 2018
  40. 40.
    Buterin, V.: Bitfloor hacked, $250000 missing. https://bitcoinmagazine.com/articles/bitfloor-hacked-250000-missing-1346821046/. Accessed 14 Mar 2018
  41. 41.
  42. 42.
    Poloniex Loses 12.3% of its Bitcoins in latest Bitcoin exchange hack. Bitcoins. https://www.coindesk.com/poloniex-loses-12-3-bitcoins-latest-bitcoin-exchange-hack/. Accessed 14 Mar 2018
  43. 43.
    Shares, D.: Bitcurex forced to shut down after $1.5 million theft. https://news.bitcoin.com/bitcurex-forced-million-theft/. Accessed 14 Mar 2018
  44. 44.
    Bitcoin7.com ‘hacked’. Database and wallets ‘stolen’. https://bitcointalk.org/index.php?topic=46982.0. Accessed 14 Mar 2018
  45. 45.
    Perez, Y.B.: Bitcoin firm coinapult restores services following hack. https://www.coindesk.com/bitcoin-firm-coinapult-restores-services-following-hack/. Accessed 14 Mar 2018
  46. 46.
    Khandelwal, S.: Danish Bitcoin exchange BIPS hacked and 1,295 Bitcoins worth $1 million stolen. https://thehackernews.com/2013/11/danish-bitcoin-exchange-bips-hacked-and_25.html. Accessed 14 Mar 2018
  47. 47.
  48. 48.
  49. 49.
    Buterin, V.: OzCoin hacked, stolen funds seized and returned by StrongCoin. https://bitcoinmagazine.com/articles/ozcoin-hacked-stolen-funds-seized-and-returned-by-strongcoin-1366822516/. Accessed 14 Mar 2018
  50. 50.
    Tether hits back after $31M Cryptocurrency hack. https://nakedsecurity.sophos.com/2017/11/23/tether-hits-back-after-31m-cryptocurrency-hack/. Accessed 14 Mar 2018
  51. 51.
    Peck, M.E.: Thousands of Bitcoins stolen in a hack on Linode. https://spectrum.ieee.org/tech-talk/computing/networks/thousands-of-bitcoins-stolen-in-a-hack-on-linode. Accessed 14 Mar 2018
  52. 52.
    Petrov, S.: Another parity wallet hack explained. https://medium.com/@Pr0Ger/another-parity-wallet-hack-explained-847ca46a2e1c. Accessed 14 Mar 2018
  53. 53.
    Parity Multisig Wallet Hack. https://blog.aeternity.com/parity-multisig-wallet-hack-47cc507d964d. Accessed 14 Mar 2018
  54. 54.
    Mooncoin was hacked, the database has been hacked. https://www.reddit.com/r/Bitcoin/comments/khv6v/mooncoin_was_hacked_the_database_has_been_leaked/. Accessed 14 Mar 2018
  55. 55.
    Ethereum Scam Database. https://etherscamdb.info. Accessed 14 Mar 2018
  56. 56.
  57. 57.
    Juels, A.: The Ring of Gyges: investigating the future of criminal smart contracts. https://dl.acm.org/citation.cfm?id=2978362. Accessed 14 Mar 2018

Copyright information

© Springer Nature Switzerland AG 2019

Authors and Affiliations

  1. 1.Group-IBMoscowRussia
  2. 2.National Research University Higher School of EconomicsMoscowRussia

Personalised recommendations