Scan to download
Home
Article
Flash
Hot Projects
Specials
Columns
ETF
Knowledge Base
Calendar
Activity
Tools
DeInsight 2024

Researcher: The Multichain attacker is likely not a hacker, and the operator may not have absolute decision-making power

2023-07-07 12:03:32
Collection

ChainCatcher news, researcher from New Fire Technology and researcher from China's national think tank 0xLoki speculated on Twitter: "It seems like the complete control was lost due to some irresistible force, rather than simply being attacked."

The abnormal fund flow in Multichain has the following four characteristics: 1. The duration of asset transfer is very long, indicating that the transferor is not in a hurry; 2. A small test of 2 USDC was conducted before the asset transfer, indicating that the transferor has sustainable transfer capability; 3. Each type of asset was transferred to an independent wallet, with no further actions (such as transferring to an exchange, swapping, or mixing coins); 4. The receiving wallet is completely clean, with no gas fees even.

Information inferred from the characteristics: 1. The transferor has ample time, considering the technical characteristics of MPC, the transferor likely gained complete control over the threshold private key shares in some way; 2. The 'attack method' is very simple, just a pure transfer operation, with no contracts, and there was testing, so the attacker is likely not a hacker; 3. The transferor did not take further actions or liquidate, indicating that the operator may not have absolute decision-making power."

0xLoki believes that the assets controlled by Multichain MPC multi-signature are no longer under control. Correspondingly, if the holders of the controlled shares hold other MPC or multi-signature shares exceeding the threshold, all these assets and contracts may also be out of control. Therefore, it is necessary to immediately check all risk exposures related to Multichain contracts/cross-chain assets, and next, attention can be paid to what the receiving address will do. In addition, 0xLoki also stated that there is no problem with MPC, but it is problematic for a natural person to hold shares exceeding the threshold and to be in a jurisdiction where cryptocurrency activities are prohibited or unprotected. (Source link)

(Source Link)
Related tags
Multichain hacker attack
ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.
Tracking of Multichain theft, abnormal asset outflows, etc.

Tracking of Multichain theft, abnormal asset outflows, etc.

Hacker attacks, asset outflows, CEO missing... A summary of several major events that Multichain has experienced since the beginning of this year.
Column
Related reading
Chill Guy's artist account is still under hacker control, posting a certain Meme coin contract before deletion
2024-12-13 12:55
Chill Guy creator: X account was hacked, and the radical tweets were not posted by himself
2024-12-13 11:50
The founder of Cardano has once again called for the adoption of the "verified tweet" feature after the foundation's X account was hacked
2024-12-09 21:11
DEXX: Will not run away and is willing to compensate, calling for an end to harm and attacks
2024-12-06 22:12
Related tags
Multichain hacker attack
Mention the project
Multichain
Multichain Cross-Chain Router Protocol
Copyright © 2023
About Us
Media Kit
Apply for a column
Disclaimer
RSS LINK
Recruitment
Qiong ICP No. 2021009392
Qiong ICP No. 2021009392
ChainCatcher Building the Web3 world with innovators
Open the app