Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
According to on-chain investigator ZachXBT, the crypto payment service provider Transak recently fell victim to a ransomware attack. Transak reported that the incident occurred when an attacker accessed an employee's laptop without authorization through a sophisticated phishing attack. The attacker used the stolen credentials to log into the system of a third-party KYC vendor used for document scanning and verification services. As a result, the attacker gained access to specific user information stored in the vendor’s dashboard. Attack method (per SlowMist): Malware Attack. Reported loss: -.
- chain
- —
- protocol
- Transak
- bug_class
- phishing
- date_occurred
- 2024-10-21
- loss_usd
- —
- source_id
- sm:transak::2024-10-21