Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,198
- Points
- 113
The FBI is investigating the disappearance of $2.2 million from one and a half thousand wallets.
On June 22, 2024, the CoinStats team recorded abnormal activity related to CoinStats Wallet wallets. To investigate the incident, the platform was temporarily disabled, and by the end of the day, the company was able to identify all affected wallet owners and notify them.
The investigation revealed unauthorized access to the CoinStats infrastructure and third-party services, including HashiCorp Vault. Hackers allegedly linked to government agencies in an unnamed country gained access to private keys from 1,590 CoinStats wallets and stole about $2.2 million worth of cryptocurrency. The investigation is currently ongoing.
CoinStats immediately took the following measures:
CoinStats assures that wallets and exchange accounts connected to track the portfolio were not affected. These accounts do not use private keys and can only be accessed in read mode.
On July 3, 2024, all functions of the CoinStats platform were fully restored and have been operating normally ever since. The CoinStats security team advises users to be careful and report any suspicious emails. In addition, it is recommended that you update all passwords in accordance with the new security policy, and make sure to enable two-factor authentication (2FA).
The Company undertakes to provide regular updates on the progress of the investigation and measures taken to ensure maximum transparency and restore user confidence.
CoinStats expresses its deep regret for the incident and is actively working to support the victims. A special form has even been created for this purpose, which must be filled out before August 15, 2024, in order to receive assistance.
Source
On June 22, 2024, the CoinStats team recorded abnormal activity related to CoinStats Wallet wallets. To investigate the incident, the platform was temporarily disabled, and by the end of the day, the company was able to identify all affected wallet owners and notify them.
The investigation revealed unauthorized access to the CoinStats infrastructure and third-party services, including HashiCorp Vault. Hackers allegedly linked to government agencies in an unnamed country gained access to private keys from 1,590 CoinStats wallets and stole about $2.2 million worth of cryptocurrency. The investigation is currently ongoing.
CoinStats immediately took the following measures:
- Engaged leading security experts, including specialists from the Security Alliance, to track stolen funds;
- Notified local law enforcement and the FBI;
- Completely reconfigured the production environment, including switching to new AWS accounts, to ensure the security of the new infrastructure;
- Conducted a comprehensive security audit with the involvement of external experts.
CoinStats assures that wallets and exchange accounts connected to track the portfolio were not affected. These accounts do not use private keys and can only be accessed in read mode.
On July 3, 2024, all functions of the CoinStats platform were fully restored and have been operating normally ever since. The CoinStats security team advises users to be careful and report any suspicious emails. In addition, it is recommended that you update all passwords in accordance with the new security policy, and make sure to enable two-factor authentication (2FA).
The Company undertakes to provide regular updates on the progress of the investigation and measures taken to ensure maximum transparency and restore user confidence.
CoinStats expresses its deep regret for the incident and is actively working to support the victims. A special form has even been created for this purpose, which must be filled out before August 15, 2024, in order to receive assistance.
Source
