Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Hacker steals $7.4 million in ethereum during CoinDash ICO launch. At the time of the ICO, in which CoinDash posted a string of characters which represented its wallet address for investors to send funds to, it appears that the hacker compromised the website and changed this text to a wallet they control. It was a matter of minutes before the platform realized the security breach had taken place and warned investors, but it was too late -- and now the stolen funds intended for CoinDash are simply sitting in a wallet awaiting collection. Attack method (per SlowMist): Malicious Code Injection Attack. Reported loss: 7,400,000 USD.
- chain
- ethereum
- protocol
- Coindash
- bug_class
- unknown
- date_occurred
- 2017-07-19
- loss_usd
- —
- source_id
- sm:coindash::2017-07-19