In an attack that has been qualified as the greatest digital robbery registered to date, the platform of cryptocurrencies Bybit based in Dubai, suffered the theft of 1.5 billion dollars in Ethereum, the second most valuable cryptocurrency after Bitcoin. As reported by means such as The Guardian and the BBC, the attack occurred while the company made a routine transfer of assets among its digital wallets.

The incident occurred when Bybit moved funds from a “cold” wallet, which is not connected to the Internet and is used for safe storage, towards a “hot” wallet, aimed at daily operations. During this process, the attackers managed to exploit vulnerabilities in the security controls and transferred the funds to an unknown destination.

Despite the magnitude of the attack, the company said that the assets of its customers are backed in a proportion of one by one and that it will cover any loss, even if the stolen funds are not recovered. The co-founder and executive director of Bybit, Ben Zhou, used the social network X (previously Twitter) to reassure users, stating that the company is solvent and has 20 billion dollars in customer assets. Zhou said that, if necessary, the company would resort to partner loans to cover losses. “Bybit is solvent even if this loss does not recover. All customer assets are backed one by one, we can cover the loss,” said Zhou.

However, the news of the attack generated an avalanche of retirement applications by users. According to Zhou, more than 350,000 retirement requests were received after the incident was known, which could cause delays in transactions processing.

To face the situation, Bybit has requested the collaboration of experts in cybersecurity and analysis of cryptocurrencies, offering a reward of 10% of the recovered amount, which could amount to 140 million dollars if all the stolen funds are recovered. In addition, Zhou stressed that the company is committed to strengthening its security infrastructure and improve liquidity to guarantee the trust of its users. The company has also announced plans to enhance its security protocols and conduct thorough audits to prevent future incidents.

The robbery had an immediate impact on the cryptocurrency market. After knowing the news, the value of Ethereum fell about 4%, standing at $2,641.41 per unit. However, the price has been partially recovered since then. This volatility highlights the inherent risks in the cryptocurrency market, where sudden news can cause significant price swings. For instance, in 2017, Bitcoin experienced a similar drop after a series of hacks on major exchanges, leading to widespread panic and a temporary loss of investor confidence.

This attack exceeds the theft of 620 million dollars suffered by the Ronin Network in 2022, which makes it the largest cryptocurrency theft registered to date. According to the British newspaper The Guardian, some preliminary reports suggest that the attack could be linked to groups of hackers backed by the North Korean state, such as Lazarus Group, known for its participation in other robberies of great magnitude in the cryptocurrency sector. The Lazarus Group has been implicated in several high-profile cyber attacks, including the 2016 hack of the Bangladesh Central Bank, which resulted in the theft of $81 million.

The incident also highlights the security concerns that persist in the cryptocurrency market, a sector that has faced criticism for the volatility of its assets and the vulnerability of its platforms. In the past, other important exchanges such as Mt. Gox and Binance have also been victims of cyber attacks, which has generated millionaire losses and questions about the security of these platforms. The Mt. Gox hack in 2014, for example, resulted in the loss of around 850,000 bitcoins, valued at over $450 million at the time, causing a significant downturn in the cryptocurrency market.

The Bybit attack arrives at a time when the cryptocurrency industry sought to recover the trust of investors after a period of uncertainty. As stated The Guardian, the sector had experienced a recent rebound, partly driven by the promises of former US President Donald Trump to convert the United States into the “world capital of cryptocurrencies” through a more lax regulation. However, this type of incident underlines the risks inherent to the digital asset market and raises questions about the ability of platforms to protect the funds of their users. Despite the technological advances and the security measures implemented, cyber attacks continue to be a significant threat to the industry.

In response to the attack, Bybit has taken several measures to reassure its users and strengthen its security infrastructure. The company has increased its cybersecurity budget and hired additional experts to conduct thorough audits and implement advanced security protocols. Bybit has also announced plans to enhance its customer support services to address the concerns of its users and ensure a smooth recovery process.

Bybit, founded in 2018, is currently the second largest platform of cryptocurrencies in the world by volume of operations, with more than 60 million users worldwide. The company has reported the case to the authorities and actively works to identify those responsible for the attack. Bybit’s swift response and commitment to transparency have been praised by industry experts, who believe that the company’s actions will help restore investor confidence in the cryptocurrency market.

The Bybit attack serves as a stark reminder of the vulnerabilities that exist within the cryptocurrency ecosystem. As the industry continues to grow and attract more investors, it is crucial for platforms to prioritize security and implement robust measures to protect user funds. The incident also underscores the need for greater regulatory oversight and collaboration between industry stakeholders to address the challenges posed by cyber threats.

In conclusion, the Bybit attack highlights the ongoing risks and challenges faced by the cryptocurrency industry. While the incident has raised concerns about the security of digital assets, it also presents an opportunity for platforms to strengthen their defenses and build a more resilient ecosystem. By prioritizing security and transparency, the industry can continue to attract investors and drive innovation in the digital asset space.