IOTA an open-source distributed ledger for IoT endured a phishing scam that costs the users about $4 million. The hacker Norgertvdberg has been in this scheme for the past six months. However, the wallet bug, bad technological design among other factors indicate a scamming process all along.
IOTA’s security compromised through a phishing attack
IOTA, a cryptocurrency for the Internet of Things suffered a hack attack of about $4 million. A clever hacker, identified as Norbertvdberg, created an elaborate phishing plan to carry out this hack. Since August 2017, the hacker has been collecting private keys for IOTA wallets. On January 19, the hacker finally decided to capitalize on his six months long scheme.
Last Friday, there have been raving speculations on Reddit by the IOTA users that their funds were missing from their wallets. There has been basically malicious websites in use to generate the password details for IOTA, a fintech network.
The private keys also called seeds have been used to authenticate the identity of a wallet’s owner. These keys are random strings of alphanumeric characters that need to be 81 characters long. Due to keys being so lengthy, IOTA investors more often than not made use of online tools in order to generate the key. The hacker took advantage of this situation and created a domain iotaseed.io that he advertised as a seed generator.
The hacker claimed the service to be secure but it actually operated in a very different way. Iotaseed.io basically used a primary fixed number that had predictable variable changes instead of creating a random key for the user. This means the hacker is able to predict and log in and further break into the accounts.
Though the number of victims hacked are unknown, the site itself has a large user base. The hacker advertised the website in such a good fashion that it resulted in top result searches for “IOTA seed generator” queries on Google.
Norbertvdberg extracted the investors’ wallets quite easily and you can’t help but to a part blame it on the DDoS attack that was carried out against the IOTA network. This attack happened at the same time when IOTA developers were kept from investigating the unauthorized transactions.
The hacker, who once was an active user on Quora, Reddit and GitHub, has completely disappeared from the internet. Moreover, its website no longer offers the private key generator service rather shows a “Taken down. Apologies.” text merely.
Attack raises concerns over security gaps in top cryptocurrencies
IOTA which has been considered a very secure project suddenly lost not just millions of money but has also earned a question mark on how legitimate or secure it has been from the start. The project was analysed by MIT that found several vulnerabilities to it but IOTA only claimed MIT to be academics in its deflection.
The technical design seems was never good enough and people were skeptical about it. Also, another significant issue was the bug in IOTA’s wallet that took a series of tries by the user to complete a transaction. It had been said that it was intentional on the IOTA’s part.
Since the scam is carried out, there hasn’t been much change in the value of IOTA that is about $2.55 with a market capitalization of $7 billion.
Another scam in the cryptocurrency market, how do you think it will affect the cryptocurrencies? Let us know your thoughts in our comment section below!
The presented content may include personal opinion of the author and is subject to market condition. Do your market research before investing in cryptocurrencies. The author or the publication does not hold any responsibility for you personal financial loss.
Follow us at
- Indian Crypto Exchanges See Volumes Plummeting 80% Since July 1 Due to New Tax Rules
- Institutional Traders Are Shorting Bitcoin At Record Pace, Here’s Why
- Lido Shut Down Terra Support, Starts bLUNA And stLUNA Withdrawal
- This Whale Adds 787 More Bitcoins As Price Struggles
- After Vauld Suspends Withdrawals, These Crypto Exchanges Could Be Next
- Cardano’s Vasil Upgrade Goes Live On Testnet; When Will It Be Lauching On Mainnet?
- How Stable Is Tether? Data Shows USDT At Massive Liquidity Imbalance
- As BTC Plummets to $19,000, Elon Musk’s Tesla Reports $440 Million Impairment Losses
- British Army Regains Control Of Their Hacked Social Media Accounts Promoting Crypto Scams
- Bitcoin Miners Likely Behind Crash Below $19K, Here’s Why
- THORChain Price Analysis: Reversal Pattern Aim RUNE Price to Hit $3.4
- Sandbox Price Analysis: Cup & Handle Pattern Aims SAND to Reach $1.5
- AVAX Price Analysis: Breakout Rally Eyes $22.1 Mark; Buy Now?
- Cardano price Analysis: ADA Price Nearing Triangle Breakout Eyes $0.655
- Polygon Price Analysis: $0.45 Fallout could Plummet MATIC price by 25%
- ETH Price Analysis: Can $1000 Support Undermine Selling Momentum?
- BTC Price Analysis: Technical Indicator hints Upcoming recovery for Bitcoin
- CRV Price Analysis: Buyers Prepare To Boost CRV Prices To $1
- DOGE Price Analysis: Pullback Opportunity Eyes its Next Jump to $0.1
- Sandbox Price Analysis: Emerging Pattern May Soar SAND price by 20%