Share

Related Links

Related Stories

  • Bitcoinica, twice hacked in 2012, is being sued
    Bitcoinica is a UK-based online trading site for the online cash alternative ‘bitcoin’. Following its second hack, Bitcoinica was taken offline and will remain off-line until a ‘transitional’ period designed to improve security is complete.
  • Security expert discovers bitcoin mining botnet
    A Trend Micro threat response engineer says he and his team have recently discovered a botnet that turns an infected host computer into a bitcoin miner.
  • Researcher discovers distributed bitcoin cracking trojan malware
    A Symantec security researcher is reporting the discovery of a trojan that infects and adds users' computers to a processing swarm designed to brute force decrypt the bitcoin electronic currency system, generating as much as $150.00 per infected computer every month.
  • Online currency Bitcoin loses most of its value due to exchange hack
    Bitcoin, the peer-to-peer currency, lost almost all of its value on Sunday due to a compromised user account that infected the Mt. Gox virtual exchange, which resulted in hackers obtaining account information and manipulating the price of the currency.

Top 5 Stories

News

Bitfloor becomes the latest hacked Bitcoin exchange

06 September 2012

Bitfloor, one of the world’s leading online Bitcoin-to-cash exchanges, has been hacked and taken offline. It follows two earlier hacks this year on the UK trading site Bitcoinica, and has been called the fifth biggest heist of virtual currency.

“Last night,” announced Bitfloor founder Roman Shtylman on Tuesday, “a few of our servers were compromised. As a result, the attacker gained accesses to an unencrypted backup of the wallet keys...” The effect of this compromise was the loss of 24,000 bitcoins, estimated to be worth around $250,000 in hard currency.

Bitfloor is one of the online exchanges that allows people to exchange the virtual money for coin of the realm, and was at the time of the breach the fourth-largest Bitcoin-to-US dollar exchange. Bitcoins are an attractive target for cyber thieves because they are traded online in a peer-to-peer encrypted and irreversible manner, and effectively impossible to trace. They can be used as a form of online bartering (for example, they can be used to buy online gaming gold) or converted to cash via exchanges such as Bitfloor.

In the real world central banks, such as the Bank of England for Sterling and the Federal Reserve for US, create money. Bitcoin creation is decentralized. Anyone can ‘print’ bitcoins by solving a cryptographic puzzle. However, the difficulty of the puzzle is designed to prevent a flood of new bitcoins, and thus provide a control on the money supply. Most newcomers gain their initial supply of bitcoins by ‘buying’ them through exchanges such as Bitfloor.

Bitfloor is now offline and its future is in doubt. Sophos points out that Shtylman “has just racked up a quarter-million dollar loss that will take him ten years of Bitcoinery to make up, assuming he can resume trading at the levels he had before shuttering his exchange following the breach.” That, however, may be the lesser of his problems – following the earlier breach and loss, affected traders decided to sue Bitcoinica.

Mt.Gox is the world’s largest bitcoin exchange. It too was hacked just over a year ago, and lost about $1000. It was a smaller amount, and the site survived and remains the largest exchange. Following the Mt.Gox breach, the ‘value’ of the bitcoin plummeted. This morning, however, HITB notes the perversity of all markets: “The hacker probably didn’t expect to improve the market for Bitcoins overall, but that’s exactly what happened, as the value of Bitcoins spiked about 6 percent today, from $10.40 per Bitcoin to about $11 per Bitcoin.”

This article is featured in:
Internet and Network Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×