Pierluigi Paganini
September 25, 2023
Mixin Network, the Hong Kong-based crypto firm behind a free, lightning fast and decentralized network for transferring digital assets announced it has suffered a $200 million cyber heist.
The company suspended deposits and withdrawals immediately after the discovery of the security breach that took place early in the morning of September 23, 2023.
The company disclosed the incident on Twitter, threat actors had access to the database of Mixin Network’s cloud service provider stealing some assets on the main net.
[Announcement] In the early morning of September 23, 2023 Hong Kong time, the database of Mixin Network's cloud service provider was attacked by hackers, resulting in the loss of some assets on the mainnet. We have contacted Google and blockchain security company @SlowMist_Team…
— Mixin Kernel (@MixinKernel) September 25, 2023
The company plans to restore its services once it has identified the vulnerabilities exploited by the attackers and fixed them.
The company is investigating the security breach with the support of the security firm SlowMist.
This incident is the largest crypto hack this year.
#PeckShieldAlert As of Sept. 25, 2023, here are the Top 10 Hacks in 2023. @MixinKernel has confirmed that they were hacked for ~$200M on Sept. 23, 2023, making it the largest crypto hack this year. pic.twitter.com/tMF2R9vSIF
— PeckShieldAlert (@PeckShieldAlert) September 25, 2023
According to a report published by blockchain cyber security firm Elliptic, in the past 104 days, the North Korea-linked APT group Lazarus has stolen most of $240 million in crypto assets from multiple businesses, including Atomic Wallet ($100m), CoinsPaid ($37.3M), Alphapo ($60M), and Stake.com ($41M).
The group is also suspected to have recently stolen $31 million from the professional global cryptocurrency exchange CoinEx.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, Mixin Network)
