In a post published on Aug. 16, crypto exchange Binance Jersey announced that a white hat hacker was able to gain access to the @BinanceJE Twitter account (the official Binance Jersey profile) and the platform’s Internet domain name.
Still, the company was able to recover the domain name within a few minutes, and the Twitter handle in some hours.
Cryptocurrency exchange Binance will compensate the white hat hacker who compromised Binance Jersey’s Internet domain name and Twitter account.
Per the announcement, the hacker obtained access “by social engineering the email domain name service provider”, and then posted a few tweets from the company’s official account, deleting them later.
Binance Jersey Twitter and domain compromised
Furthermore, the hacker was reportedly cooperative and open during his communication with the exchange’s security team, which allowed for the quick recovery of the Twitter account. The firm notes:
“We were able to restore the domain name within a few minutes and the Twitter handle a couple of hours later. We will issue a security bug bounty to the white hat hacker, as well as investigate the incident further with our service provider. … All funds on Binance.JE are safe. No data was compromised.”
In one of the tweets from another account, reportedly controlled by the same hacker, they asked Binance CEO Changpeng Zhao to contact them personally. At press time, all of the hacker’s tweets have been deleted from Binance Jersey’s Twitter profile.
As Cointelegraph recently reported, the native token of crypto exchange Binance soared around 11%, despite the fresh rumors of a possible Know Your Customer data leak affecting exchange’s users.
British Hacker to Hand Over $1M in Crypto for Phishing Attacks
A British judge has ordered the confiscation of $1.1 million worth of cryptocurrency from a hacker who used phishing attacks to steal personal data and sell it on the dark web.
As The Telegraph reported on Aug. 23, judge Joanna Korner of Southwark Crown Court ruled that the police could confiscate $1.1 million worth of digital currency from Grant West.
In his cyber attacks, West allegedly operated under the online pseudonym “Courvoisier” and used phishing emails to steal customers’ personal data – including financial data, as well as credit and debit cards details – before selling it on the dark web with cryptocurrency.
78 million individual usernames
West targeted companies including Sainsbury’s – the second largest retail chain in the United Kingdom – general merchandise retailer Argos and Uber. During the investigation, the police seized an SD card containing 78 million individual usernames and passwords, and the information of 63,000 credit and debit cards.
West was reportedly sentenced to ten years for conspiracy to defraud and possession of criminal property in May. At the time of West’s arrest, the value of the cryptocurrency was around $1.96 million, but price volatility made it difficult for authorities to determine the exact value of the confiscation, according to prosecuting barrister Kevin Barry.
The seized digital currency is set to be sold and West’s victims will be compensated for damages.
In July, a gang of masked men raided a Bitcoin exchange in the English city of Birmingham, sparking a police investigation. On that occasion, the group had reportedly attempted to steal a Bitcoin automatic teller machine using a rope attached to their car.
According to blockchain security company CipherTrace, outright thefts, scams and other kinds of misappropriation of funds from digital currency holders and trading platforms resulted in around $4.3 billion in losses throughout 2019.