1. BITBILIHome
  2. Article

Huobi fixes data breach involving sensitive information for 4,960 users

136 views

TL;DR Breakdown

  • Crypto exchange Huobi has fixed its data breach after a massive data leak that allegedly put users’ funds at risk since June 2021
  • The exchange risked exposure of its sensitive information, such as VIP user data and technical infrastructure of the exchange
  • However, it took months for the exchange to respond to the white hat hacker

Description

Crypto exchange Huobi has fixed its data breach after a massive data leak that allegedly put users’ funds at risk since June 2021. The data leak had information on almost all the over-the-counter (OTC) transaction information from 2017 to 2021, with some of the data being VIP user data and information on the technical infrastructure … Read more

Crypto exchange Huobi has fixed its data breach after a massive data leak that allegedly put users’ funds at risk since June 2021. The data leak had information on almost all the over-the-counter (OTC) transaction information from 2017 to 2021, with some of the data being VIP user data and information on the technical infrastructure of the exchange.

Huobi risked exposure of its sensitive information 

White hat hacker and citizen journalist Aaron Phillips disclosed the Huobi data breach. The white hacker explained that an attacker exploiting Huobi’s vulnerability would have had the opportunity to achieve the largest crypto theft in history. Anyone accessing the exchange’s credentials could have changed their domains, including hbfile.net and huobi.com. In addition, their internal documents and user data could be exposed.

According to previous reports, the company handles over a billion dollars daily in trading volume. Hence, users’ accounts and crypto assets would have been stolen if they hadn’t taken action to fix the leak. Phillips emphasized the potential for malicious scripts to be injected into Huobi’s content delivery networks (CDNs) and websites. According to him, the CDNs might have compromised all Huobi login pages, possibly harming anyone who used a Huobi website or app over the previous two years.

The exchange risks exposure to sensitive information, including the contact information and account balances of cryptocurrency users, and it puts customers at risk of losing their accounts and crypto assets. According to Phillips, this includes Huobi’s over-the-counter (OTC) trade data as well as a database of cryptocurrency whales. He confirmed, however, that no breach was carried out using the data leak.

Huobi fixes data breach

According to the exchange, which confirmed the occurrence, it was caused by the appropriate staff members’ irregular conduct in the S3 barrel of the Japanese station’s test environment. On October 8, 2022, all pertinent user data was isolated. 

The exchange asserted that the leakage was small-scale, involving 4,960 individuals. It added that the leaked information did not have sensitive information and never affected user accounts and the security of their assets. 

Huobi further stated that the Huobi Japanese and Huobi Global sites are separate entities. On June 21, 2023, the Huobi Security Team immediately took action after being alerted by a white hat team, instantly closing the associated file access permissions. According to the exchange, the issue has been resolved, and all associated user data has been removed. Huobi has since deleted the affected account, and no users are at risk anymore.

Despite the issue being resolved now, Phillips mentioned that it took months for the exchange to respond, and the leaked data remained online even after he gave Huobi the first notice in June 2022.

Crypto exchanges are prone to data breaches since they have access to a lot of customer data that can be used to steal funds by hackers. Coinsquare, a Canadian crypto exchange, suffered a data breach in November 2022. Its users’ information was exposed, such as phone numbers, names of investors, birth dates, public wallet addresses, and transaction history. However, the exchange affirmed that there were no passwords accessed, and the information is yet to be detected by bad actors.

Gemini Exchange also experienced a data breach that saw 5.7 million users stolen and leaked on hacking forums. Posts advertising the data from the breach first surfaced in September last year, with the data offered for 30 BTC, about $520,000. The same data was posted in November, offering the data and additional data from other exchanges. In another forum, later on, the data was offered for free. Gemini has since asked its clients to implement two-factor authentication and use hardware security keys to prevent hacking and accessing their funds.

The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.

文章来源于互联网:Huobi fixes data breach involving sensitive information for 4,960 users

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年7月5日 12:00
Next 2023年7月5日 13:23

Related articles

  • Ant Group’s $6 billion buyback amid regulatory tension

    TL;DR Breakdown Ant Group, under the leadership of Jack Ma, has launched a plan to buy back shares valued almost 70% below its 2020 IPO estimate amid ongoing regulatory scrutiny. This move came after a $1 billion fine imposed by Chinese financial regulators as part of a broader campaign to rein in corporate influence. The regulatory crackdown began after Jack Ma criticized Chinese regulators and state-owned banks in November 2020, leading to a restructuring of Ant Group. Description In the tempestuous world of fintech, one storm appears to be brewing over Ant Group, the financial technology colossus pioneered by the ubiquitous Jack Ma. The firm has unveiled a plan to buy back shares valued almost 70% below its IPO estimate in 2020, a move that has raised eyebrows in investor circles. But this … Read more In the tempestuous world of fintech, one storm appears to be brewing over Ant Group, the financial technology colossus pioneered by the ubiquitous Jack Ma. The firm has unveiled a plan to buy back shares valued almost 70% below its IPO estimate in 2020,…

    Article 2023年7月10日

  • U.S. politics clash: Dems push for CBDC reign, GOP fears risks

    TL;DR Breakdown The U.S. House Financial Services Committee debated the CBDC Anti-Surveillance State Act, discussing the implications of a U.S. CBDC. The debate delved into broader topics, including Star Wars, anarchists, and “crypto bros.” Tom Emmer introduced the bill, warning against the government’s potential surveillance tool. Description The showdown on Capitol Hill over the future of digital currency in the U.S. has taken an intense turn. On one side, the Democrats argue that Central Bank Digital Currencies (CBDCs) could bolster the nation’s financial leadership. The GOP, however, fears potential infringements on the rights and privacy of Americans. From Star Wars to Financial … Read more The showdown on Capitol Hill over the future of digital currency in the U.S. has taken an intense turn. On one side, the Democrats argue that Central Bank Digital Currencies (CBDCs) could bolster the nation’s financial leadership. The GOP, however, fears potential infringements on the rights and privacy of Americans. From Star Wars to Financial Oversight The U.S. House Financial Services Committee recently tackled the contentious CBDC Anti-Surveillance State Act. Instead of a routine discussion,…

    Article 2023年9月21日

  • OKX exchange unveils new feature for its Web3 wallets

    TL;DR Breakdown KX has launched a “Smart Account” feature in its wallet to simplify on-chain interactions. This Smart Account combines smart contracts, externally owned accounts, and enables stablecoin payments, with added security like social recovery. Supported by seven major chains, the innovation emphasizes accessibility and efficiency in cryptocurrency transactions. Description The Seychelles-based cryptocurrency exchange OKX is set to introduce a new feature, the “Smart Account,” to its decentralized wallet, the OKX Wallet. This strategic addition is expected to deliver a new shift in the user experience and transaction convenience.  The unveiling of the Smart Account is an attempt to address the long-standing challenge in the … Read more The Seychelles-based cryptocurrency exchange OKX is set to introduce a new feature, the “Smart Account,” to its decentralized wallet, the OKX Wallet. This strategic addition is expected to deliver a new shift in the user experience and transaction convenience.  The unveiling of the Smart Account is an attempt to address the long-standing challenge in the crypto landscape – bridging the gap between complexity and usability. This feature will use account abstraction technology…

    Article 2023年8月3日

  • MakerDAO’s Proposal to Increase DAI Savings Rate to 3.33% 

    TL;DR Breakdown MakerDAO plans to raise the DAI savings rate (DSR) from 1% to 3.33% through an upcoming vote, incentivizing users to deposit DAI and earn higher interest. The proposed DSR increase is expected to have broader implications for interest rates in the DeFi market, potentially attracting more capital and solidifying DAI as a safe and high-yield stablecoin. In a move set to impact the decentralized finance (DeFi) ecosystem, MakerDAO, a leading Ethereum-based protocol, is gearing up for a crucial vote on a proposal to raise the savings rate for its stablecoin, DAI, to 3.33%. Currently set at 1%, the DAI savings rate (DSR) plays a vital role in incentivizing users to deposit DAI and earn interest.  If the proposal is approved, the increased DSR is expected to have broader implications for interest rates across the DeFi market, attracting more capital and solidifying DAI as a safe and high-yield stablecoin. Contents hide 1 MakerDAO Proposes DSR Increase to Stimulate DAI Adoption 2 Implications for DeFi Interest Rates and Market Dynamics 3 Previous Rate Hike Success and Future Prospects 4 Conclusion…

    Article 2023年5月30日

  • Vietnamese crypto investors heavily rely on word of mouth

    TL;DR Breakdown A recent study reveals 75.5% of Vietnamese crypto investors rely on friends’ referrals for investment decisions, 2.5 times higher than the U.S. Other significant information sources include self-study, media news, and community groups. The “Vietnam Cryptocurrency Market Report” 2023 suggests 70% believe the bear market is nearing its end, while 75% want more crypto regulation. Description Vietnam’s surging cryptocurrency market is undergoing a distinctive evolution. Where many might expect high-tech digital forums or cutting-edge financial analysts to guide investment choices, the reality in Vietnam is simpler: people trust their friends. The Overarching Power of Word of Mouth As the world grapples with the buzz of cryptocurrency, Vietnam has carved a unique … Read more Vietnam’s surging cryptocurrency market is undergoing a distinctive evolution. Where many might expect high-tech digital forums or cutting-edge financial analysts to guide investment choices, the reality in Vietnam is simpler: people trust their friends. The Overarching Power of Word of Mouth As the world grapples with the buzz of cryptocurrency, Vietnam has carved a unique niche for itself. An overwhelming 75.5% of Vietnamese cryptocurrency…

    Article 2023年8月31日
TOP