According to TechFlow, SlowMist Technology founder Yu Xian said on Twitter that the source of the two thefts of FixedFloat was allegedly from the hosting service provider Time4VPS. Although the service provider is cheap, its security is unreliable. The attacker obtained all functional permissions of the host, including global access to all servers, making the previous security measures completely ineffective. Yu Xian suggested that the cryptocurrency industry avoid choosing similar small service providers. Previously, FixedFloat suffered an attack and lost more than $26 million worth of Bitcoin and ETH.