Share

cover art for Cyberattack Hits Crypto.com - Threatwire

Daily Tech News Show

Cyberattack Hits Crypto.com - Threatwire

By Shannon Morse, ThreatWire

The world’s third largest cryptocurrency trading platform was hit with a cyberattack last week that compromised 483 customer accounts and led to $34 million crypto to be withdrawn. Crypto.com was targeted and US $33.8 million was stolen, though the CEO stated in multiple interviews that customer funds are not at risk.

The hack caused about $15 million in ethereum, $18.6 million bitcoin and $66,000 misc crypto to be stolen from the platform. The attack was detected on January 17th, at which time Crypto.com suspended withdrawals for about 14 hours. 2FA tokens were also revoked, so users had to re-sign in and set up new 2FA tokens for access.

While this crypto was stolen via unauthorized withdrawals, the platform fully reimbursed affected users. Transactions resumed on January 18. According to a Crypto.com post, their risk monitoring systems detected the attack, and saw transactions being approved without 2FA authentication, meaning the 2FA was being bypassed by attackers.

The company migrated to a completely new 2FA infrastructure in response. They also added that the company will be moving away from 2FA and moving to true multi factor authentication for end user security, and beefing up security with an Account Protection Program, which will offer better security for funds within the App and exchange. APP would also restore funds up to $250,000 in the event of unauthorized access.

A lot of technical information regarding this attack has not been shared with the public. For example - who was behind this attack? How were they able to bypass 2FA restrictions for withdrawals? What protocol was being used to implement 2FA and how does the new infrastructure fix these problems? Hopefully Crypto.com will share some of this information with their customers to ease some of the concerns shared via social media.

Crypto.com:

https://www.bleepingcomputer.com/news/security/cryptocom-confirms-483-accounts-hacked-34-million-withdrawn/

https://threatpost.com/2fa-bypassed-crypto-com-heist/177846/

https://crypto.com/product-news/crypto-com-security-report-next-steps

https://www.vice.com/en/article/g5qj9j/cryptocom-says-incident-was-actually-dollar30-million-hack

https://www.zdnet.com/article/crypto-com-confirms-483-users-hit-in-attack-that-saw-over-31m-in-coins-withdrawn/

https://www.zdnet.com/article/crypto-com-ceo-responds-to-complaints-of-login-issues-after-hack/

More episodes

View all episodes

  • 5170. Preservation or Piracy? The Scraping of All of Spotify - DTNS 5170

    27:30||Ep. 5170
    Plus, foldables may be getting more square, and Waymos act odd during a power outage.Starring Tom Merritt and Robb Dunewood.Show notes can be found here.

  • Career - Lamarr Wilson

    50:29||Season 12
    In our first return guest, we talk to creator/influencer Lamarr Wilson about the word career. Lamarr talks about changing his career later in life from education to content creation. Why he switched and how his early interests and experiences with tech really set the stage for who he is now.Featuring Tom Merritt and Lamarr Wilson.https://www.lamarr.tv/

  • 5169. TikTok Sells Its US Arm - DTNS 5169

    43:42||Ep. 5169
    Samsung announced the 2nm Exynos 2600 for some of the Galaxy S26 devices in 2027, and Jason shares his first impressions after 48 hours with the RayNeo X3 Pro smart glasses.Starring Jason Howell, Huyen Tue Dao, Tom Merritt and Justin Robert YoungShow notes can be found here.

  • 5168. Sony and Tencent’s Horizon of Friendship - DTNS 5168

    33:10||Ep. 5168
    Plus OpenAI starts an app store, and Apple lets Japanese users have more app stores.Starring Tom Merritt and Huyen Tue Dao Show notes are found here.

  • 5167. The Perfect Phone If You Don’t Care About Photos - DTNS 5167

    24:22||Season 12, Ep. 5167
    We also get new Gemini and Open AI tools, and Warner stands fast by the Netflix offer.Starring Tom Merritt and Sarah Lane.Links to stories discussed in this episode can be found here.

  • 5166. Is Netflix Slowly Becoming a Podcatcher? - DTNS 5166

    40:33||Season 12, Ep. 5166
    LG plans to show off its first Micro RGB TV at CES 2026, and Dr Niki tells us about a treatment for Huntington’s Disease.Starring Jason Howell, Tom Merritt, and Dr Niki.Links to stories discussed in this episode can be found here.

  • 5165. Roomba Goes Bankrupt, But It Doesn’t Totally Suck - DTNS 5165

    24:52||Ep. 5165
    Also, why is that Copilot button on your LG TV making so many people so mad?Starring Tom Merritt and Robb DunewoodShow notes can be found here.

  • Why Disney Struck a Deal with OpenAI - DTNS Weekend

    21:23||Season 12
    Andy Beach from Engines of Change explains what the deal means and how it might set a precedent for the future.Starring Tom Merritt and Andy Beach.https://www.enginesofchange.ai/

  • 5164. Apple (Mostly) Loses in Its Epic Games Appeal - DTNS 5164

    34:37||Ep. 5164
    OpenAI released GPT 5.2 and teased an Adult Mode arriving early 2026, and Scott Johnson tells us why the Game Awards is an early sign of a gaming slowdown.Starring Jason Howell, Jenn Cutter, Tom Merritt and Scott Johnson. Show notes can be found here.
Copyright Tom Merritt
Hosted with ❤️ by Acast