1. BITBILIHome
  2. Article

Huobi fixes data breach involving sensitive information for 4,960 users

38 views

TL;DR Breakdown

  • Crypto exchange Huobi has fixed its data breach after a massive data leak that allegedly put users’ funds at risk since June 2021
  • The exchange risked exposure of its sensitive information, such as VIP user data and technical infrastructure of the exchange
  • However, it took months for the exchange to respond to the white hat hacker

Description

Crypto exchange Huobi has fixed its data breach after a massive data leak that allegedly put users’ funds at risk since June 2021. The data leak had information on almost all the over-the-counter (OTC) transaction information from 2017 to 2021, with some of the data being VIP user data and information on the technical infrastructure … Read more

Crypto exchange Huobi has fixed its data breach after a massive data leak that allegedly put users’ funds at risk since June 2021. The data leak had information on almost all the over-the-counter (OTC) transaction information from 2017 to 2021, with some of the data being VIP user data and information on the technical infrastructure of the exchange.

Huobi risked exposure of its sensitive information 

White hat hacker and citizen journalist Aaron Phillips disclosed the Huobi data breach. The white hacker explained that an attacker exploiting Huobi’s vulnerability would have had the opportunity to achieve the largest crypto theft in history. Anyone accessing the exchange’s credentials could have changed their domains, including hbfile.net and huobi.com. In addition, their internal documents and user data could be exposed.

According to previous reports, the company handles over a billion dollars daily in trading volume. Hence, users’ accounts and crypto assets would have been stolen if they hadn’t taken action to fix the leak. Phillips emphasized the potential for malicious scripts to be injected into Huobi’s content delivery networks (CDNs) and websites. According to him, the CDNs might have compromised all Huobi login pages, possibly harming anyone who used a Huobi website or app over the previous two years.

The exchange risks exposure to sensitive information, including the contact information and account balances of cryptocurrency users, and it puts customers at risk of losing their accounts and crypto assets. According to Phillips, this includes Huobi’s over-the-counter (OTC) trade data as well as a database of cryptocurrency whales. He confirmed, however, that no breach was carried out using the data leak.

Huobi fixes data breach

According to the exchange, which confirmed the occurrence, it was caused by the appropriate staff members’ irregular conduct in the S3 barrel of the Japanese station’s test environment. On October 8, 2022, all pertinent user data was isolated. 

The exchange asserted that the leakage was small-scale, involving 4,960 individuals. It added that the leaked information did not have sensitive information and never affected user accounts and the security of their assets. 

Huobi further stated that the Huobi Japanese and Huobi Global sites are separate entities. On June 21, 2023, the Huobi Security Team immediately took action after being alerted by a white hat team, instantly closing the associated file access permissions. According to the exchange, the issue has been resolved, and all associated user data has been removed. Huobi has since deleted the affected account, and no users are at risk anymore.

Despite the issue being resolved now, Phillips mentioned that it took months for the exchange to respond, and the leaked data remained online even after he gave Huobi the first notice in June 2022.

Crypto exchanges are prone to data breaches since they have access to a lot of customer data that can be used to steal funds by hackers. Coinsquare, a Canadian crypto exchange, suffered a data breach in November 2022. Its users’ information was exposed, such as phone numbers, names of investors, birth dates, public wallet addresses, and transaction history. However, the exchange affirmed that there were no passwords accessed, and the information is yet to be detected by bad actors.

Gemini Exchange also experienced a data breach that saw 5.7 million users stolen and leaked on hacking forums. Posts advertising the data from the breach first surfaced in September last year, with the data offered for 30 BTC, about $520,000. The same data was posted in November, offering the data and additional data from other exchanges. In another forum, later on, the data was offered for free. Gemini has since asked its clients to implement two-factor authentication and use hardware security keys to prevent hacking and accessing their funds.

The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

文章来源于互联网:Huobi fixes data breach involving sensitive information for 4,960 users

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年7月5日 12:00
Next 2023年7月5日 13:23

Related articles

  • Donald Trump’s NFT company reveals shockingly low bank balance, but massive Ethereum fortune: Details

    TL;DR Breakdown Former President Donald Trump’s NFT company, CIC Digital LLC, reveals a bank account balance of less than $1,000 but holds a substantial Ethereum wallet valued between $250,000 and $500,000. Trump’s NFT sales have seen significant success, with a surge in sales volume and a rise in floor prices for Trump-branded digital assets. The financial filing provides detailed information on Trump’s income sources, totaling over $1.2 billion, including earnings from foreign business activities, speaking fees, and NFT transactions. Description Former President Donald Trump has disclosed new details about CIC Digital LLC, a company that receives licensing fees for using his likeness on non-fungible tokens (NFTs). According to a revised financial filing submitted by Trump on July 13, CIC Digital LLC holds an Ethereum wallet with an estimated value ranging from $250,000 to $500,000, while … Read more Former President Donald Trump has disclosed new details about CIC Digital LLC, a company that receives licensing fees for using his likeness on non-fungible tokens (NFTs). According to a revised financial filing submitted by Trump on July 13, CIC Digital LLC holds…

    Article 2023年7月15日

  • Binance Coin price analysis: BNB crashes by 7%

    TL;DR Breakdown Binance Coin price analysis is bearish today. BNB/USD is valued at $258.2 at the time of writing. The strongest resistance is present at $330.5. Binance Coin price analysis shows bearish momentum with further consistent opportunities. According to market analysis, the prevailing trend in the BNB market indicates a strong presence of bearish sentiment, which is expected to persist in the near future. This suggests a potential for further devaluation of BNB in the coming days. The bears have gained a solid foothold and may soon exert a significant influence on the overall market conditions. Additionally, the price of BNB has witnessed a substantial decline, dropping from $306.2 to $272.5. As of today, on June 7, 2022, the price has experienced an additional crash, reaching $256.4, with a daily high of $260 and a current value of $258.1. As of today, June 7, 2023, the price of Binance Coin (BNB) stands at $259.30, accompanied by a 24-hour trading volume of $2.48 billion. Its market capitalization is valued at $40.41 billion, representing a market dominance of 3.63%. Over the past…

    Article 2023年6月12日

  • Polkadot price analysis: DOT increases value at $5.29

    TL;DR Breakdown Polkadot price analysis is bullish today. The strongest resistance is present at $5.46. The strongest support is present at $5.23. Polkadot price analysis reveals a relatively upbeat approach today; the price has gained most of its lost value. In recent days, there has been a notable upsurge in the overall market sentiment favoring DOT (Polkadot), leading to a significant appreciation in its value. On May 25, the cryptocurrency witnessed an abrupt increase from $5.16 to $5.28. Subsequently, it sustained positive momentum throughout the day, ultimately rebounding to a peak value of $5.29. On May 27, 2023, the price of DOT reached significant heights, reaching a pinnacle of $5.29 and maintaining this elevated level throughout the day. Currently, the cryptocurrency’s price exhibits relative stability, hovering around $5.29. Polkadot’s present market conditions indicate that it is currently priced at $5.30, with a trading volume of $158.68 million over the past 24 hours. Its market capitalization stands at $5.23 billion, and it holds a market dominance of 0.46%. Notably, the price of Polkadot has experienced a 1.29% increase in the last 24…

    Article 2023年5月29日

  • Binance sheds 1,000 jobs worldwide amidst regulatory turmoil

    TL;DR Breakdown According to reports over 1,000 employees have been laid off in recent weeks, with the cuts being implemented globally.  Prior to these layoffs, Binance’s global headcount was estimated to be around 8,000.  The exchange has faced a series of setbacks where within a span of 30 days, Binance was ordered to halt operations in Belgium, was denied a license in the Netherlands, failed to obtain a crypto custody license in Germany, and lost its euro banking partner.  Description Binance, one of the largest cryptocurrency exchanges, is marking its sixth anniversary amidst recent reports of significant layoffs. The Wall Street Journal has revealed that over 1,000 employees have been laid off in recent weeks, with the cuts being implemented globally.  Customer service workers, particularly in India, have been heavily impacted. Prior to these layoffs, … Read more Binance, one of the largest cryptocurrency exchanges, is marking its sixth anniversary amidst recent reports of significant layoffs. The Wall Street Journal has revealed that over 1,000 employees have been laid off in recent weeks, with the cuts being implemented globally.  Customer…

    Article 2023年7月15日

  • Nearly $1 billion lost to crypto exploits, hacks, and scams in 2023: Report

    TL;DR Breakdown Nearly $1 billion has been lost to cybercrimes in the cryptocurrency market in 2023, with August accounting for $45.8 million in losses, according to reports from CertiK. Exit scams were the largest contributor to August’s losses, amounting to around $26 million, followed by exploits at $13.5 million and flash loans at $6.4 million. Description In a year that has seen the cryptocurrency market continue to mature, a darker narrative has also unfolded. Nearly $1 billion has been lost to various forms of cybercrime in the crypto space in 2023, according to a report by CertiK, a blockchain security firm  August alone sees $45.8 million in losses Data from CertiK, … Read more In a year that has seen the cryptocurrency market continue to mature, a darker narrative has also unfolded. Nearly $1 billion has been lost to various forms of cybercrime in the crypto space in 2023, according to a report by CertiK, a blockchain security firm  August alone sees $45.8 million in losses Data from CertiK, a blockchain security company, revealed that the month of August alone…

    Article 2023年9月2日
TOP