🎁 Exclusive offer: Get EXTRA Bits and Celebrate Bybit's 6th Birthday With $2.2M Prize Pool. Act Now!

Crypto Wallet Bitkeep Hacked and Drained for Millions

Crypto Wallet Bitkeep Hacked and Drained for Millions

Hackers attack yet another decentralized finance tool.

Bitkeep, a multi-chain Web3 decentralized finance (DeFi) wallet, was hacked and drained for over $8 million.

The news was first revealed by Bitkeep clients, which used Twitter to claim that their Bitkeep wallet had automatically transferred a certain amount of tokens when they were not using their wallet.

What is Defi 2.0? (Explained with Animations)

Did you know?

Want to get smarter & wealthier with crypto?

Subscribe - We publish new crypto explainer videos every week!

Shortly after that, on December 26th, Bitkeep took to its official Telegram group to confirm the news. The company revealed that “some APK package downloads have been hijacked by hackers and installed with code implanted” by malicious actors.

If your funds are stolen, the application you download or update may be an unknown version (unofficial release version) hijacked.

In the same message, Bitkeep asked its users to move their funds to wallets available on “another official store,” such as Google Play or App Store. On top of that, users were recommended to use a “newly created wallet address,” as the previous wallet address may be leaked to hackers.

Moreover, the affected users were asked to share relevant information on Google forms issued by Bitkeep.

Shortly after Bitkeep’s announcement, blockchain security firm PeckShieldAler took to Twitter to reveal that around $8 million worth of assets, such as Binance Coin (BNB), Ethereum (ETH), Tether (USDT) and Dai (DAI), were stolen.

Another blockchain analytics provider OKLink shared a report breaking down how exactly hackers exploited Bitkeep. The company stated that malicious actors had created several fake Bitkeep websites with APK files, which mimicked version 7.2.9 of the Bitkeep wallet.

By downloading the “update,” users unknowingly sent their private keys or seed words to the hackers. 

OKLink claims that the attack was executed over five networks: Ethereum, BNB Chain, Polygon and Tron. It is worth noting that the hacker used BNB Chain bridges Nomiswap, Biswap and Apeswap to bridge tokens to Ethereum.

The company claims that the total transaction volume was around $31 million.

Gile K. Market Sentiment Analyst
Gile is a Market Sentiment Analyst who understands what public events may form what emotions. Her experience researching Web3 news and public market messages – including cryptocurrency news reports, PRs, and social network streams – is critical to her role in helping lead the Crypto News Editorial Team.
As an intelligent professional in public relations, together with the team, she aims to determine real VS fake news patterns, and bring her findings to anyone searching for unbiased news and events happening in the FinTech markets. Her expertise is uncovering the latest trustworthy & informative Web3 announcements to the masses.
When she's not researching the trustworthiness of mainstream stories, she spends time enjoying her terrace view and taking meticulous care of her outdoor environment.

Loading...
Bybit
×
Verified

$30,000 IN REWARDS

Bybit Black Friday Deal
5.0 Rating