PANews reported on June 9 that SlowMist founder Yu Xian tweeted that they had received another case of a user's exchange account being stolen by malicious counter-trading, and the team is following up on the analysis. There are many ways to attack the exchange's Web side, such as the previous malicious extension that takes away Cookies, clipboard attacks, form tampering, request tampering, etc. In addition to malicious extensions, reverse proxy phishing, Trojan viruses, etc. are all feasible methods. The Web side has many shortcomings, and the risk control strategy must be higher than the App side. The thief is likely to be a repeat offender. Yu Xian then added that this incident may not be stolen by counter-trading, but it may also be that the account itself is completely controlled and the currency is directly withdrawn. The specific situation needs to wait for the results of the investigation.