Binance Hack 2019 — $40M Exploit Analysis

Binance lost 7,000 BTC in a sophisticated attack combining phishing, malware, and API key theft to bypass 2FA and security checks.

Details

Full Description

Hackers used a combination of phishing, malware, and viruses to obtain API keys and 2FA codes from a large number of Binance user accounts. The coordinated withdrawal of 7,000 BTC was executed in a single transaction, triggering Binance's automated risk management systems — but too late. CEO CZ announced Binance's SAFU fund would cover all losses.

Laundering Analysis

The 7,000 BTC were immediately dispersed across hundreds of addresses to fragment tracking. Funds moved through Bitcoin mixers and were sold via OTC desks in small batches. Binance covered user losses from its Secure Asset Fund for Users (SAFU). The attacker's identity was never confirmed, though the sophistication suggested organized crime or state actors.

Sources

Transaction Hashes

Related Hacks

Back to Browse