Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,198
- Points
- 113
CoinStats, the company that manages cryptocurrency portfolios, announced the suspension of all operations while eliminating threats to compromise users wallets.
The CoinStats team did not disclose the extent of the security breach and the financial consequences of the exploit, but promised to provide information on the progress of work. According to reports, 1,590 crypto wallets were affected by the attack, which is approximately 1.3% of all CoinStats wallets.
The company said that its specialists are trying to mitigate the consequences of a hacker attack, and that user services will be temporarily disabled to isolate the incident. The administration of CoinStats recommended that users of the attacked crypto wallets urgently transfer their funds to other accounts using the exported private key.
The company assured that only wallets created on the CoinStats platform were affected, and none of the third-party crypto wallets and centralized exchange accounts connected to CoinStats wallets were compromised. Currently, the official website of CoinStats is temporarily unavailable.
---
Two wallets linked to the CoinStats hack transferred 311 ETH (~$959,000) to the Tornado Cash mixer. Transactions were recorded in CertiK.
On June 22, the project team reported a cyberattack that affected 1,590 cryptocurrency wallets hosted on the platform (1.3% of the total). The damage amounted to $2 million.
The company shared a list of compromised addresses. Later it became known that it was incomplete. At the same time, the exploit did not affect external connected user wallets and accounts on centralized exchanges.
The attackers tried to take advantage of the CoinStats hack to promote fake refund programs.
On June 26, CoinStats CEO Narek Gevorgyan revealed some details of the investigation. According to him, the evidence points to misleading one of the company's employees who downloaded the malware on their work computer.
On June 28, six days after the incident, the team restored the functionality of the service and announced the payment of compensation to the victims.
CoinStats later said it was optimizing its transaction database and moving to a different platform to improve efficiency and reliability. Representatives of the service promised to strengthen the system with updates and audits.
On July 3, CoinStats informed about the restoration of the platform's functionality and its full functionality.
On July 5, representatives of the service announced that they are continuing to investigate the incident and are taking measures to protect the new infrastructure. In the near future, the team will provide additional information, including measures to support affected customers.
On July 10, Cyvers experts discovered a transfer to Tornado Cash stolen as a result of hacking Curve Finance in July 2023.
Data from the blockchain browser indicates that the service received 1,500 ETH (~$4.67 million).
The CoinStats team did not disclose the extent of the security breach and the financial consequences of the exploit, but promised to provide information on the progress of work. According to reports, 1,590 crypto wallets were affected by the attack, which is approximately 1.3% of all CoinStats wallets.
The company said that its specialists are trying to mitigate the consequences of a hacker attack, and that user services will be temporarily disabled to isolate the incident. The administration of CoinStats recommended that users of the attacked crypto wallets urgently transfer their funds to other accounts using the exported private key.
The company assured that only wallets created on the CoinStats platform were affected, and none of the third-party crypto wallets and centralized exchange accounts connected to CoinStats wallets were compromised. Currently, the official website of CoinStats is temporarily unavailable.
---
Two wallets linked to the CoinStats hack transferred 311 ETH (~$959,000) to the Tornado Cash mixer. Transactions were recorded in CertiK.
On June 22, the project team reported a cyberattack that affected 1,590 cryptocurrency wallets hosted on the platform (1.3% of the total). The damage amounted to $2 million.
The company shared a list of compromised addresses. Later it became known that it was incomplete. At the same time, the exploit did not affect external connected user wallets and accounts on centralized exchanges.
The attackers tried to take advantage of the CoinStats hack to promote fake refund programs.
On June 26, CoinStats CEO Narek Gevorgyan revealed some details of the investigation. According to him, the evidence points to misleading one of the company's employees who downloaded the malware on their work computer.
On June 28, six days after the incident, the team restored the functionality of the service and announced the payment of compensation to the victims.
CoinStats later said it was optimizing its transaction database and moving to a different platform to improve efficiency and reliability. Representatives of the service promised to strengthen the system with updates and audits.
On July 3, CoinStats informed about the restoration of the platform's functionality and its full functionality.
On July 5, representatives of the service announced that they are continuing to investigate the incident and are taking measures to protect the new infrastructure. In the near future, the team will provide additional information, including measures to support affected customers.
On July 10, Cyvers experts discovered a transfer to Tornado Cash stolen as a result of hacking Curve Finance in July 2023.
Data from the blockchain browser indicates that the service received 1,500 ETH (~$4.67 million).
