HT TECH wants to start sending you push notifications. Click allow to subscribe

Crypto attack! Hackers steal whopping $600 mn from blockchain linked to Axie Infinity game

Hackers stole about $600 million from a blockchain network connected to the popular Axie Infinity online game in one of the biggest crypto attacks to date.

By: BLOOMBERG
Updated on: Aug 22 2022, 11:09 IST
In Axie Infinity, players acquire, breed and train fluffy Pokemon-type creatures called Axies. Each Axie is an NFT or digital-only asset that can be traded. (HT_PRINT)

Hackers stole about $600 million from a blockchain network connected to the popular Axie Infinity online game in one of the biggest crypto attacks to date. Computers known as nodes operated by Axie Infinity maker Sky Mavis and the Axie DAO that support a so-called bridge -- software that lets people convert tokens into ones that can be used on another network -- were attacked, with the hacker draining what’s known as the Ronin Bridge of 173,600 Ether and 25.5 million USDC tokens in two transactions. The breach happened on March 23, but was only discovered Tuesday, according to Ronin, the blockchain that supports Axie Infinity.

The attack is the latest to show that bridges are often rife with problems. The computer code of many isn’t audited, allowing for hackers to exploit vulnerabilities. It’s often unclear who runs them and exactly how. Identities of validators, who are supposed to order transactions on bridges, are often shrouded in mystery. And yet there are thousands of bridges out there, and they move hundreds of million of dollars worth of crypto.

You may be interested in

Mobiles Tablets Laptops
7% OFF
Apple iPhone 15 Pro Max
  • Black Titanium
  • 8 GB RAM
  • 256 GB Storage
₹148,900₹159,900
Buy now
28% OFF
Samsung Galaxy S23 Ultra 5G
  • Green
  • 12 GB RAM
  • 256 GB Storage
₹107,999₹149,999
Buy now
Google Pixel 8 Pro
  • Obsidian
  • 12 GB RAM
  • 128 GB Storage
₹106,998
Check details
Apple iPhone 15 Plus
  • Black
  • 6 GB RAM
  • 128 GB Storage
₹87,900
Check details
21% OFF
Acer Swift Go SFG14 41 NX KG3SI 002 Laptop
  • Pure Silver
  • 8 GB RAM
  • 512 GB SSD
₹58,999₹74,999
Buy now
39% OFF
Acer Aspire 5 A515 57G Laptop
  • Gray
  • 16 GB RAM
  • 512 GB SSD
₹54,949₹89,999
Buy now
22% OFF
Acer Aspire 3 A315 24 NX KDESI 004 Laptop
  • Silver
  • 8 GB RAM
  • 512 GB SSD
₹33,499₹42,999
Buy now
40% OFF
Asus VivoBook 15 X515JA BQ322WS Laptop
  • Transparent Silver
  • 8 GB RAM
  • 512 GB SSD
₹31,350₹51,990
Buy now
34% OFF
Xiaomi Pad 6
  • Mist Blue
  • 6 GB RAM
  • 128 GB Storage
₹26,299₹39,999
Buy now
55% OFF
Lenovo Tab M10 5G
  • Abyss Blue
  • 6 GB RAM
  • 128 GB Storage
₹20,999₹47,000
Buy now
32% OFF
Realme Pad 2
  • Imagination Grey
  • 6 GB RAM
  • 128 GB Storage
₹19,749₹28,999
Buy now
Honor Pad X9
  • Gray
  • 4 GB RAM
  • 128 GB Storage
₹14,999
Check details

“The fact that nobody notices for six days screams aloud that some structure should be in place to watch illicit transfers,” said Wilfred Daye, head of Securitize Capital, the asset-management arm of Securitize Inc.         

The price of Ron, a token used on the Ronin blockchain, dropped about 22% after the hack was disclosed. AXS, a token used in Axie Infinity, fell as much as 11%, according to CoinMarketCap.  

In its blog, Ronin said it’s in touch with major cryptocurrency exchanges and with blockchain tracer Chainalysis to monitor the move of the stolen funds. Ronin also said it’s working with law enforcement. Ronin didn’t immediately return requests for comment.

The stolen funds went to two cryptocurrency exchanges, according to blockchain forensics firm Elliptic. Several exchanges acknowledged the hack without confirming that the funds had been moved there. 

Huobi tweeted that it would “fully support Axie Infinity in the aftermath of the attack. Sam Bankman-Fried, who runs the FTX cryptocurrency exchange, said in an email that it would assist on the blockchain forensics. Binance Holdings Ltd. and OKX issued similar statements, with Binance also saying it’s “working with certain law enforcement agents on potential leads,” without giving details.  

Validator Breach

The Ronin hack follows the February attack on the Wormhole bridge, which resulted in more than $300 million in losses that one of Wormhole’s sponsors, Jump Crypto, reimbursed. Other crypto bridges have suffered from so-called rug pulls when their founders disappeared and had issues when their key developers have gone rogue.

“In this case the issue was that the bridge was highly centralized -- the theft came as a result of someone hacking the ‘validator nodes’ of the Ronin Bridge,” said Tom Robinson, co-founder of Elliptic. “Funds can be moved out of the bridge if five of the nine validators approve it. The hacker managed to get hold of the private cryptographic keys belonging to five of the validators -- so that was enough to steal the crypto assets.”

Hacks at bridges can threaten the entire ecosystem of decentralized apps, called dapps, from games to lending services. A bridge would typically take a user’s Ether and put it in a smart contract. Then it would issue the user an equivalent amount of so-called wrapped Ether, which can be used on this particular non-Ethereum blockchain -- like Ronin or Solana -- to invest into dapps. If the underlying Ether is stolen, the wrapped Ether becomes worthless, effectively leaving dapps and their users with massive losses.

“If a bridge has the ability to mint tokens, it’s like taking control of the minting machines,” Yat Siu, co-founder of Animoca Brands, an investor into gaming studio Sky Mavis, said in an interview before the hack. “Bridges are authorities at this point, and if they are designed badly or have vulnerabilities, they become a huge risk to the ecosystem.”

To save the entire Solana ecosystem from a direct hit, Jump Crypto bailed out Wormhole last month. Sky Mavis and Ronin haven’t announced any similar plans yet.   

Catch all the Latest Tech News, Mobile News, Laptop News, Gaming news, Wearables News , How To News, also keep up with us on ,Twitter, Facebook, , and Instagram. For our latest videos, subscribe to our YouTube channel.

First Published Date: 30 Mar, 11:18 IST
Tags:

Sale

Mobiles Tablets Laptops
4% OFF
Samsung Galaxy S24 Ultra
  • Titanium Black
  • 12 GB RAM
  • 256 GB Storage
₹129,999₹134,999
Buy now
7% OFF
Apple iPhone 15 Pro Max
  • Black Titanium
  • 8 GB RAM
  • 256 GB Storage
₹148,900₹159,900
Buy now
13% OFF
Xiaomi 14
  • Matte Black
  • 12 GB RAM
  • 512 GB Storage
₹69,999₹79,999
Buy now
10% OFF
Apple iPhone 15 Plus
  • Black
  • 6 GB RAM
  • 128 GB Storage
₹80,590₹89,900
Buy now
38% OFF
Xiaomi Pad 6
  • Mist Blue
  • 6 GB RAM
  • 128 GB Storage
₹24,999₹39,999
Buy now
38% OFF
Lenovo Tab M10 5G
  • Abyss Blue
  • 6 GB RAM
  • 128 GB Storage
₹20,999₹34,000
Buy now
28% OFF
Realme Pad 2
  • Imagination Grey
  • 6 GB RAM
  • 128 GB Storage
₹17,999₹24,999
Buy now
41% OFF
Lenovo Tab M9
  • Frost Blue
  • 3 GB RAM
  • 32 GB Storage
₹9,449₹16,000
Buy now
38% OFF
Acer Aspire 3 A315 24 NX KDESI 004 Laptop
  • Silver
  • 8 GB RAM
  • 512 GB SSD
₹32,790₹52,999
Buy now
27% OFF
Infinix INBook X1 Neo XL22 Laptop Intel Celeron Quad Core 8 GB 256 GB SSD Windows 11
  • Blue
  • 4 GB RAM
  • 128 GB SSD
₹21,990₹29,990
Buy now
29% OFF
Asus ROG Zephyrus G14 GA401QH BM072TS Laptop
  • Grey
  • 8 GB RAM
  • 512 GB SSD
₹65,990₹92,990
Buy now
35% OFF
Asus VivoBook Pro 15 M6500RC HN741WS Laptop
  • Quiet Blue
  • 16 GB RAM
  • 512 GB SSD
₹67,990₹104,990
Buy now
NEXT ARTICLE BEGINS