Jump to content

a few user reported their gatehub wallet been hacked and XRP sent to r9do2Ar8k64NxgLD6oJoywaxQhUS57Ck8k


Recommended Posts

  • Replies 1.2k
  • Created
  • Last Reply

Top Posters In This Topic

Top Posters In This Topic

Popular Posts

On June 1 we were made aware of a theft of 201,000 XRP (transaction F6E9E1385E11649A6C2F88723A821AF209B54030886539DCEF9DDD00E6446948) and immediately started investigation. It turned out that the acco

Hey all! We are aware of the matter and are looking into it. If anyone has any information please contact us at: security@gatehub.net   GateHub

Reminder: There is no direct evidence pointing to Gatehub being responsible even though it may appear as the most likely scenario right now. Just be careful about jumping to conclusions What you c

Posted Images

25 minutes ago, ___JH___ said:

Let's hope Binance can stop this portion of stolen XRP's !!

 

image.png.1c3c37bf83975758e748f25fa03fcc2a.png

Yeah they are on it, they have been informed while it was ongoing so now they have to prove they can act as quickly as ChangeNOW.

CZ openly congratulated them for their quick actions, now it's his turn to act. FWIW I received a reply immediately from Binance support when I informed them so they were very reactive.

Link to post
Share on other sites

The criminals are using so many exchanges to launder the stolen funds, they just HAVE to make a mistake and leave traces at some point!

With the whole crypto world watching them I don't think they are cashing out, they will try to get in other, more shady cryptos though.

Edited by mrenne
Link to post
Share on other sites

Ok guys i will let the cat out of the bag.

This one might be even bigger than you think.

Gatehub confirmed ~18k possible compromised accounts. Its clear the hackers must have had access to the database with secretkeys.

looking at how the "hack" was performed and how they are able to launder the stolen coins with so many different accounts, its obvious he/they must be using fake Identities to pull this through.  (Exchanges all have KYC).

So we are not only talking about the theft of millions XRP but also 18k cases of possible theft of Identities, WE must assume the perpetrator(s) also had access to Gatehubs KYC database with all uploaded client documents.

 

tl:dr Your passport might be used to launder stolen funds!

 

 

 

Edited by superboon
tldr
Link to post
Share on other sites
44 minutes ago, Geekluca said:

Where is @gatehub in all this? 

Dear community,

 

We are in contact with all exchanges involved and are working together with law enforcement to freeze the transactions.

Due to an ongoing investigation and  security reasons we can not share any more information. 

 

We would like to thank all exchanges for their cooperation. 

 

GateHub Team

Link to post
Share on other sites
4 minutes ago, gatehub said:

Dear community,

 

We are in contact with all exchanges involved and are working together with law enforcement to freeze the transactions.

Due to an ongoing investigation and  security reasons we can not share any more information. 

 

We would like to thank all exchanges for their cooperation. 

 

GateHub Team

Do you get cooperation and active support or help from @Ripple as well?

Link to post
Share on other sites
34 minutes ago, superboon said:

Ok guys i will let the cat out of the bag.

This one might be even bigger than you think.

Gatehub confirmed ~18k possible compromised accounts. Its clear the hackers must have had access to the database with secretkeys.

looking at how the "hack" was performed and how they are able to launder the stolen coins with so many different accounts, its obvious he/they must be using fake Identities to pull this through.  (Exchanges all have KYC).

So we are not only talking about the theft of millions XRP but also 18k cases of possible theft of Identities, WE must assume the perpetrator(s) also had access to Gatehubs KYC database with all uploaded client documents.

 

tl:dr Your passport might be used to launder stolen funds!

 

 

 

No wonder gatehub is keeping quiet about their findings. This is atrocious. Imagine the damage done. 

Link to post
Share on other sites
3 minutes ago, jlripple said:

No wonder gatehub is keeping quiet about their findings. This is atrocious. Imagine the damage done. 

this is why it will be hard to find the real people behind the scenes. I dont want to imagine innocent Gatehub customers being accused of money laundering or theft whilst the real criminals can feel safe opening accounts with stolen  IDs.

Link to post
Share on other sites
49 minutes ago, superboon said:

So we are not only talking about the theft of millions XRP but also 18k cases of possible theft of Identities, WE must assume the perpetrator(s) also had access to Gatehubs KYC database with all uploaded client documents.

I would not go that far, this is quite a heavy assumption you are making here.

What sense does it make to verify accounts with stolen ID's? It is much easier to fake passports. And some services don't even require KYC information if you don't want to withdraw fiat to a bank account.

Link to post
Share on other sites
7 minutes ago, superboon said:

this is why it will be hard to find the real people behind the scenes. I dont want to imagine innocent Gatehub customers being accused of money laundering or theft whilst the real criminals can feel safe opening accounts with stolen  IDs.

You're describing a worst case scenario, but there is no reason to believe, or any indicators pointing to KYC material being stolen. The stolen funds has been processed through less than 20 exchanges, some of which don't have KYC requirements and are exchanging services. On other exchanges they have re-used old exchange accounts, that are connected to other criminal activity. The stressful boost in liquidating funds yesterday and today leaves much room for errors and slip-ups. I am convinced that law enforcement will have an easy job of finding at least some of the perpetrators behind the heist.

Link to post
Share on other sites
15 minutes ago, mrenne said:

I would not go that far, this is quite a heavy assumption you are making here.

What sense does it make to verify accounts with stolen ID's? It is much easier to fake passports. And some services don't even require KYC information if you don't want to withdraw fiat to a bank account.

is it far fetched? maybe? is it possible? Definitly. These files were not more secured than encrypted secret keys.  You assume the thiefs are plain stupid and use their real names? There is no need to fake something if you can use originals without risk to reveal ur id.

If you have adminrights on gatehub to access encrypted secret keys surely you arealso able  to copy KYC documents which are probably not even encrypted.

Also if you do investigations how can you not consider a worst case scenario?

 

Edited by superboon
edit
Link to post
Share on other sites
9 minutes ago, superboon said:

Also if you do investigations how can you not consider a worst case scenario?

 

Nothing wrong with considering worst case scenarios. But likely Gatehub doesn't even store KYC material themselves. And I'd rather focus on more likely scenarios first, since the evidence on the XRPL doesn't point in that direction :)

Link to post
Share on other sites
21 minutes ago, mrenne said:

I would not go that far, this is quite a heavy assumption you are making here.

What sense does it make to verify accounts with stolen ID's? It is much easier to fake passports. And some services don't even require KYC information if you don't want to withdraw fiat to a bank account. 

it makes sense since you dont need do any effort to fake ids if you have originals. Secondly you dont run risk to get detected since the used ID is legit.

more over in case your account gets blacklisted you have a scapegoat and no risk for yourself.

 

 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.