This Crypto Startup Hacks Its Own Users’ Wallets to Rescue $13 Million

By CCN: Better the thief you know than the one you don’t. Cryptocurrency platform Komodo has had to hack its users after discovering a serious security flaw in one of its wallets.

According to a press statement by the blockchain startup, Komodo’s cybersecurity team was able to ‘sweep’ in and retrieve 8 million Komodo coins (KMD) and 96 Bitcoin before hackers got hold of the exposed loot. An estimated $13 million worth of cryptocurrency was saved in the process.

A video on YouTube reveals how bad actors could have potentially gained access to Komodo users’ private keys:

Funds are Safe and Sound But Still Centralized

The Komodo team has moved all funds to two company-owned wallets in the meantime:

Owners can claim them back in the coming weeks as the details are ironed out. Komodo urged affected users to get in touch via their Discord channel:

Komodo refunds. Hacks its users.

Plans are in the works to refund Komodo users. Source: Twitter.

The team also encouraged all users of their Agama wallets to transfer funds to a new address just as a safety precaution.

The unusual nature of this defense worked this time around but it does raise questions about the so-called ‘decentralized’ nature of cryptocurrency. In cases of disputes or fraud like above should someone step in to regulate a nascent industry like crypto?

Open-Source is a Double-Edged Sword for Cryptocurrency

The security flaw was ultimately discovered by auditors from npm, a package manager for Javascript. Unfortunately, this kind of attack is becoming more commonplace as hackers look for more creative ways to steal crypto.

The attack was carried out by using a pattern that is becoming more and more popular; publishing a ‘useful’ package to npm, waiting until it was in use by the target, and then updating it to include a malicious payload.

The philosophy of open-source has spawned popular software like Linux, WordPress, and Firefox but has also come at a real cost to security. As remote working continues to grow, there is a serious need to audit developers, some of whom are half-way around the world.

Essentially we hacked the hacker, but he is very patient. He spent months acting as a normal contributor…

Komodo unwittingly included the compromised Javascript library into their Agama wallet, however, not all versions were affected.

Komodo Hacks Its Users But KMD Remains Unaffected

KMD has had a fairly muted reaction in the market since the announcement suggesting the company plugged the hole before hackers could do any serious damage.

Komodo Bitcoin price

KMD remains unaffected as the coin continues its upward trend versus Bitcoin this month. Source: TradingView.

Cryptocurrency enthusiasts will no doubt be hoping that this is the first and only time a project will need to hack its users to keep their funds safe.

About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews

Automated trading with HaasBot Crypto Trading Bots

Blockchain/Cryptocurrency Questions and Answers

What Are E-stablecoins And How Do They Operate?
What Are E-Stablecoins And How Do They Operate?
August 11, 2022
How to Choose a Legit Crypto Casino?
August 5, 2022
Spend Crypto
5 Ways to Spend Crypto
August 2, 2022
What Is A DAO LLC?
What Is A DAO LLC?
August 2, 2022
Can Running A Lightning Node Earn You Passive Income?
Can Running A Lightning Node Earn You Passive Income?
July 5, 2022


CryptoCurrencyUSDChange 1hChange 24hChange 7d
? --- 0.00 % 0.00 %
? --- 0.00 % 0.00 %
? --- 0.00 % 0.00 %
USD Coin1.000 0.44 % 0.25 % 0.18 %
? --- 0.00 % 0.00 %
? --- 0.00 % 0.00 %
? --- 0.00 % 0.00 %
? --- 0.00 % 0.00 %
Solana42.12 0.56 % 2.22 % 3.81 %
? --- 0.00 % 0.00 %

bitcoin
Bitcoin (BTC) $ 22,817.00
ethereum
Ethereum (ETH) $ 1,820.97
tether
Tether (USDT) $ 1.00
usd-coin
USD Coin (USDC) $ 1.00
bnb
BNB (BNB) $ 291.93
binance-usd
Binance USD (BUSD) $ 1.00
xrp
XRP (XRP) $ 0.363545
cardano
Cardano (ADA) $ 0.495729
solana
Solana (SOL) $ 38.28
dogecoin
Dogecoin (DOGE) $ 0.074512