ZBExchange

Amount Lost: $4,767,945.00
Funds Returned: $0.00
Category: Exchange (DEX)
Date: 2022-8-1

Quick Summary

An attack was carried out on ZBExchange during which a hacker managed to steal approximately $4.8M.

**
Details of the Exploit**

The ZBExchange provides cryptocurrency exchange services for both cryptos to fiat and crypto to crypto trading pairs.

The hacker took advantage of a vulnerability, which allowed him to steal $ETH and $ERC20 tokens from the ZB Hot Wallet. Since the ZBExchange hot wallet was compromised, it is possible that the hacker managed to obtain a private key, which allowed the tokens to be withdrawn to the scammer address (A). In this transaction, scammer address(A) sends 2k $ETH to scammer address (B):

https://etherscan.io/tx/0x740261cecb74aacd00b0523095208fb2ba393b7e3ace2e705ae40ca493494f64

some of the stolen funds are located at scammer address (B).

Block Data Reference

Victim address: https://etherscan.io/address/0xe019d99f9fe03dc5661ad4bb19f9db88d9fa0a62

Hacker addresses:

https://etherscan.io/address/0x67c67b5a3c4009cf849f86be37e79db3923f1055
https://etherscan.io/address/0x26446c1658b036a6fa3efb805f8fc538451d3fc2

Proof Links:

https://www.fxempire.com/crypto/exchange/zb/review
https://www.coindesk.com/tech/2022/08/04/crypto-exchange-zb-exchange-loses-nearly-5m-in-suspected-hack-pauses-withdrawals/
https://beincrypto.com/zb-com-latest-victim-of-a-hot-wallet-hack-heres-what-we-know/

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ZBExchange.md

ZBExchange.md

ZBExchange

Files

ZBExchange.md

Latest commit

History

ZBExchange.md

File metadata and controls

ZBExchange