$570 million worth of Binance’s BNB token stolen in another major crypto hack

Share this:
Source: CNBC

KEY POINTS

  • Binance said a cross-chain bridge linking with its BNB Chain was targeted, enabling hackers to move BNB tokens off the network.
  • In total, hackers withdrew 2 million BNB tokens — about $570 million at current prices — from BNB Chain said in a blog post on Friday.
  • An earlier estimate from the company placed the total amount withdrawn in a range of $100 million to $110 million.
  • The value of BNB sank more than 3% Friday morning to $285.36 a coin, according to CoinMarketCap data.

Cryptocurrency exchange Binance temporarily suspended its blockchain network after hackers made off with around $570 million worth of its BNB token.

Binance said late Thursday a cross-chain bridge linking with its BNB Chain was targeted, enabling hackers to move BNB tokens off the network. So-called cross-chain bridges are tools that allow the transfer of tokens from one blockchain to another.

The company said it had worked with network validators — entities or individuals who confirm transactions on the blockchain — to pause creation of new blocks on BSC, suspending all transaction processing while a team of developers investigates the breach.

Binance is the world’s largest crypto exchange by trading volume.

“An exploit on a cross-chain bridge, BSC Token Hub, resulted in extra BNB. We have asked all validators to temporarily suspend BSC,” Changpeng Zhao, Binance’s CEO, said in a tweet Thursday evening.

“The issue is contained now. Your funds are safe. We apologize for the inconvenience and will provide further updates accordingly.”

BNB Chain has since resumed operations.

In total, hackers drained 2 million BNB tokens — about $570 million at current prices — from the network, Binance’s BNB Chain said in a blog post on Friday.

The hack was caused by a bug in the bridge’s smart contract that allowed hackers to forge transactions and send money back to their crypto wallet, according to crypto security firm Immunefi. Smart contracts are pieces of code on the blockchain that allow agreements to execute automatically without human intervention.

“As with many bridge designs, there is one central point that holds most of the funds that are moving through the bridge,” Adrian Hetman, tech lead of the triaging team at Immunefi, told CNBC.

“Ultimately, the Bridge was tricked into giving funds from that contract.”

The value of BNB sank more than 3% Friday morning to $285.36 a coin, according to CoinMarketCap data.

An earlier estimate from the company placed the total amount withdrawn in a range of $100 million to $110 million. The company also said it managed to freeze $7 million of funds with the help of its security partners.

A Binance spokesperson told CNBC the company coordinated with BNB Chain validators to enact an upgrade. That meant that most of the funds remained in the exploiter’s crypto wallet, while about $100 million was “unrecovered.”

BNB Chain has 26 active validators at present and 44 in total in different time zones, the spokesperson added.

BNB Chain, originally known as Binance Chain, was first developed by Binance in 2019. Like other blockchains, it features a native token, called BNB, that can be traded or used in games and other applications.

It is the latest in a series of major hacks targeting cross-chain bridges, with instances of sloppy engineering making them a prime target for cybercriminals.

A total of around $1.4 billion has been lost to breaches on cross-chain bridges since the start of 2022, according to data from blockchain analytics firm Chainalysis.

The crypto industry has had a rough year, with roughly $2 trillion in value being erased since the peak of a blistering rally from 2020 to 2021. The implosion of $60 billion blockchain venture Terra and a worsening macroeconomic environment have severely impacted market sentiment.

Watch Video


Share this:
admin

About admin

Engr. OluKayode Adedayo is an engineer with many years of experience in the information Technology and Telecommunications field though he read electrical engineering and started off with electrical engineering building services design consultancy before focusing on Information and Communication Technology which was his passion. He graduated from the University of Ilorin; Kwara State in 1992/93 He is a Chief Ideas Technocrat and Visionary with great ideas and a solutions consultant in ICT and e-governance. He was a Consultant in the audit of core engineering assets of the Liquidation of Nitel/Mtel He was international startup partner to a top Wireless Service Assurance OEM tool company and a few other companies always trying to bridge the technological gap between developed countries and Nigeria by partnering with cutting edge companies. He was involved in engineering business development between Huawei & MTN. He developed the first Pinging software with MS-DOS 6.22 used in CBCLN bank in 1998. He is a also a certified professional of a UK Project Management Institute. Presently he is researching new solutions that can be developed and used to ease day to day problems from RMS, Man to Machine, V2X, IoT, AI, TeleMed and some few other emerging technologies. He created an ICT Pro-Social Network Blog ( including 3 other blog for 3other sectors) with generating advertising revenue and owns many group for promoting ICT Business and careers and members and visitors are from worldwide on the site and LinkedIn. He is a Corporate Member of the Nigerian Society of Engineers. CNSE He is married and blessed with three children.
0 0 votes
Article Rating
Subscribe
Notify of
guest

This site uses Akismet to reduce spam. Learn how your comment data is processed.

0 Comments
Inline Feedbacks
View all comments