After returning from the Dragon Boat Festival, everyone should have been flooded with news about an incident.
Okx user assets were stolen, and 5 million yuan was lost overnight.
Everyone should have only seen a few screenshots, and also knew that Binance lost money for similar incidents. Seeing that many people don’t know the reason, I will take Le Yan’s incident as an example to tell you, so that you can understand the melons. Since the OKX platform has not yet given a corresponding response, we should also eat melons rationally:
1. Background of the incident
At one o’clock in the middle of the night, when the user was about to go to bed, he found that his email address had already received relevant notification emails, but he did not check it in time due to bad timing. Later, the user found on the exchange that his BTC and SOL assets were converted into USDT and transferred to a newly authorized whitelist address in multiple small segments. The whole process was completed without the user’s knowledge.
2. Details of the incident
1. Equipment and security:
-The user’s mobile phone is dedicated to trading, and he has never clicked on any suspicious links, and the emails in the mailbox have not been read.
-The hacker can log in to the user’s OK exchange account and add a whitelist withdrawal address without obtaining the user’s verification code.
2. Exchange response:
-After the incident, the user immediately contacted the OK Exchange for help, but the staff only responded by asking the user to contact the police on their own and then ignored it.
III. User doubts
1. Risk control mechanism:
-OK Exchange claims to be the safest platform in the industry, but it has experienced multiple thefts with the same method in a short period of time.
-Users question why the exchange's risk control mechanism is so fragile that hackers can easily bypass security measures.
2. User information leakage:
-Users suspect that there is a large-scale leakage of user information in the exchange, which allows hackers to bypass security measures such as verification codes to steal coins.
3. AI technology and security vulnerabilities:
-Users mentioned that they recently saw hackers using AI videos to simulate avatars to deceive the exchange's manual review and reset all verification information.
-Question that the security precautions of the OK Exchange have failed to keep up with the iteration and upgrade of fraud technology, which seems very backward and arrogant.
The above content is a summary of what users posted on social media. In general, some unknown reasons led to the theft of assets in the exchange. At present, the official response of OKX has not been given. I will update it in time if there is a new processing result. #okx #被盗资金
