05 December 2016

BitInstant becomes latest bitcoin theft victim

06 March 2013  |  8793 views  |  0 keyboard 3

Using simple social engineering techniques, an attacker has managed to steal around $12,500 in bitcoins from virtual currency exchange BitInstant.

BitInstant went offline over the weekend before reappearing on Monday with a blog post explaining the attack.

According to the post, an attacker contacted the site's domain registrar - proxying through a network owned by a UK haulage company - posing as the writer and using a "very similar" e-mail address.

Armed with details of the writer's place of birth and mother's maiden name, presumably found online, the attacker convinced the domain registrar, Site5, to add their e-mail address to the account and make it the primary login.

After gaining access, the attacker managed to steal $12,480 worth of bitcoins and send them in three instalments to other bitcoin addresses.

However, says the post, various security measures, such as multi-factor authentication and auto lockdowns prevented any more theft and no personal or transactional information from users has been leaked.

The attack is just the latest in a long line of thefts from various bitcoin exchanges over the last couple of years, highlighting the security hurdles the technology poses.

Despite this, the virtual currency has been riding a wave in recent weeks, hitting a record price of more than $46 as speculation mounts that it is set to break into the mainstream, boosted by a deal between MT. Gox and CoinLab which should see an expanded USD presence.

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

MT. Gox and CoinLab team up for US Bitcoin push; Silicon Valley Bank onboard

MT. Gox and CoinLab team up for US Bitcoin push; Silicon Valley Bank onboard

28 February 2013  |  6577 views  |  0 comments | 6 tweets | 2 linkedin
Bitcoin-Central backtracks on PSP claims

Bitcoin-Central backtracks on PSP claims

07 December 2012  |  11580 views  |  0 comments | 24 tweets | 10 linkedin
Bitcoin merchants plan own Black Friday

Bitcoin merchants plan own Black Friday

05 November 2012  |  6750 views  |  1 comments | 3 tweets | 1 linkedin
Hacked Bitcoin exchange Bitfloor reopens

Hacked Bitcoin exchange Bitfloor reopens

28 September 2012  |  6177 views  |  0 comments
Bitfloor exchange shuts down after $250,000 heist

Bitfloor exchange shuts down after $250,000 heist

05 September 2012  |  5349 views  |  0 comments
BitInstant confirms Bitcoin card plans

BitInstant confirms Bitcoin card plans

23 August 2012  |  8019 views  |  0 comments
Users sue Bitcoin exchange over $460k in missing funds

Users sue Bitcoin exchange over $460k in missing funds

13 August 2012  |  7175 views  |  0 comments
Bitcoin exchange loses $90,000 in virtual currency hack

Bitcoin exchange loses $90,000 in virtual currency hack

14 May 2012  |  8972 views  |  0 comments
Bitcoin exchange TradeHill sues Dwolla

Bitcoin exchange TradeHill sues Dwolla

07 March 2012  |  7605 views  |  0 comments
Paxum ditches Bitcoin as Tradehill exchange shuts down

Paxum ditches Bitcoin as Tradehill exchange shuts down

20 February 2012  |  9410 views  |  0 comments
Bitcoin value crashes after exchange compromised

Bitcoin value crashes after exchange compromised

20 June 2011  |  18924 views  |  0 comments

Related blogs

Create a blog about this story (membership required)
Find out moreVisit capgemini.comhttp://www.financialcrimerisk.fiserv.com/aml?r=finextra

Top topics

Most viewed Most shared
Royal Mint to issue digital goldRoyal Mint to issue digital gold
6634 views comments | 23 tweets | 21 linkedin
Bank CEOs fret about ROI as startups drive IT arms raceBank CEOs fret about ROI as startups drive...
5792 views comments | 16 tweets | 21 linkedin
UK challenger bank Masthaven opens for businessUK challenger bank Masthaven opens for bus...
5740 views comments | 15 tweets | 13 linkedin
ING pulls plug on P2P payments app TwypING pulls plug on P2P payments app Twyp
5618 views comments | 16 tweets | 15 linkedin
R3 and Calypso to develop blockchain trade confirmation systemR3 and Calypso to develop blockchain trade...
5615 views comments | 13 tweets | 12 linkedin

Featured job

to Six-Figure Base, Bonus, Benefits
London, UK

Find your next job