As the crypto industry grieves the unexpected collapse of crypto exchange FTX, a hacker suddenly strikes the beleaguered exchange. FTX reportedly suffered a hack with more than $600 million drained from FTX’s crypto wallets.
During the course of the ongoing conversation on the FTX crisis, FTX account holders began claiming that their assets had vanished from their wallets, which sparked rumors regarding the possibility of a hack.
The administrator of the FTX exchange’s Telegram channel subsequently acknowledged the breach and issued a warning to users, saying that “FTX applications are malware.” Take them out… Do not visit the FTX site since it might potentially download Trojans.”
Wallets owned by FTX have had more than $663 million worth of various tokens on Ethereum, Binance Smart Chain, and Avalanche taken out of them.
Out of this total, it is believed that $477 million was stolen, and the remaining money are believed to have been moved by FTX to a safe location where they were kept in cold storage.
Through decentralized exchanges, over $220 million worth of the tokens has been swapped for ETH or DAI.
It appears that FTX transferred $186 million across more than a hundred separate tokens into this wallet, where it is still present.
FTX US general counsel Ryne Miller supports the hypothesis that the transactions were made to safeguard the funds still in FTX’s wallets. He confirmed that the process was expedited to mitigate damage upon observing unauthorized transactions.
On-chain data revealed multiple FTX wallets were transferring funds to a single Ethereum wallet address.
This wallet received funds from various international and U.S.-based FTX wallets, which amassed over 83,878.63 ETH, around $105.3 million in just two hours starting at 9:20 PM ET on Nov. 11, and continued to see an influx of funds.
The wallet owner swapped $26 million Tether (USDT) to DAI via 1inclh while approving USDP for trade on CoW Protocol. As the situation unfolded, the wallet also approved transfers and sales of other cryptocurrencies, including Chainlink, cUSDT, and stETH.
Tether proactively blacklisted $31.4 million worth of Tether USDT tokens tied to the transactions when FTX confirmed the hack on Telegram.
The blacklisted USDT tokens, as noted by crypto scam investigator ZachXBT, consisted of $27.5 million in USDT on Solana and $3.9 million in USDT on Avalanche.
Tether prevented hackers from transferring the funds to another account or trading them for other cryptocurrencies by blacklisting the stolen USDT token.
Ryne Miller later posted a statement from John Ray, the new Chief Restructuring Officer and CEO of FTX, noting the team has been in contact with and is coordinating with law enforcement and relevant regulators regarding the hack situation.
Ray was chosen as the new CEO after FTX filed for bankruptcy in the US and SBF resigned from his position.
“Among other things, we are in the process of removing trading and withdrawal functionality and moving as many digital assets as can be identified to a new cold wallet custodian,” Ray stated.
Nick Percoco, the Chief Security Officer of Kraken, then ignited Crypto Twitter with a brief post implying that Kraken was able to identify the hacker. Ryan Miller then asked Percoco to reach out to him regarding the situation.
A Kraken spokesperson stated, “We can confirm that our team is aware of the identity of the accounts involved in the ongoing FTX hack, and we are committed to working with law enforcement to ensure they have everything they need to adequately investigate this matter.”
Compiled by Coinbold