Slow Fog Cosine: Over 1.67 million EIGEN stolen by hackers have been primarily exchanged for USDC/USDT and have been "washed."

2024-10-05 14:51:20

Collection

ChainCatcher message, regarding the security incident where an email revealing that an investor transferred tokens to a custody address was hijacked by malicious attackers on EigenLayer, SlowMist's Yu Xian analyzed on platform X: "The attacker seems to have premeditated for quite some time. The attacker's address first received 1 EIGEN, and about 26 hours later received 1,673,644 EIGEN, all from a 3/5 multi-signature address.

Then, a little over an hour later, various coin washing activities began. The gas came from ChangeNow, and the illegally obtained EIGEN was mainly exchanged for USDC/USDT, primarily washed through platforms like HitBTC.

According to official statements, the reason the attacker succeeded is that 'the email was compromised.' It is estimated that in the email content, the expected receiving wallet address for EIGEN was replaced with the attacker's address, causing the project party to send EIGEN to the attacker's address. Even if they initially sent 1 EIGEN, it is possible that after the attacker received 1 EIGEN, they also sent 1 EIGEN to the expected receiving address, leading the expected recipient to believe the entire process was correct. Of course, this is just speculation, and the specifics should be based on official disclosures."

(Source Link)

ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.