"Crypto Casino Stake[.]com Back Online After $40m Heist"

Hackers have recently stolen over $40m in cryptocurrency from Curaçao-headquartered Stake[.]com, which offers casino and sports betting for players using cryptocurrency.  The firm noted that on Monday, it had spotted unauthorized transactions being made from its Ethereum (ETH) and Binance Smart Chain (BSC) hot wallets.  The firm claimed that BTC, LTC, XRP, EOS, TRX, and “all other wallets” were untouched by the hackers.  In crypto, hot wallets are less secure than cold wallets because public and private keys can be reached from the internet, enabling remote access and unauthorized activity.  This appears to be what happened to Stake[.]com, although the firm has revealed few other details.  On the same day of discovery, Stake[.]com announced that the issue had been remediated.  The incident was first flagged by blockchain security company Cyvers, which said its AI monitoring tools had picked up suspicious activity, specifically that $16m worth of Ethereum cryptocurrency had been withdrawn from Stake[.]com.  The stolen crypto was then transferred to other external wallets.  Blockchain investigator ZachXBT revealed that an additional $25.6m in BSC and Polygon was drained from the hot wallets.  Hot wallets are a common target for attack by state-sponsored and cybercrime actors. 

 

Infosecurity reports: "Crypto Casino Stake[.]com Back Online After $40m Heist"

Submitted by Anonymous on