Hackers used a Chrome plug-in called Aggr to collect cookies, bypass 2FA, and manipulate accounts. They placed limit sell orders above the market price in BTC, USDC and other liquidity-scarce trading pairs, and completed the theft.

Even more shocking is that Binance already knew about the existence of this malicious plug-in, but in order to track down the hackers, it did not notify users in time. Even when the hackers were operating the accounts, Binance failed to freeze the accounts in time.

The above is the general content!

We must take this as a warning and grasp security!

#黑客 #安全