By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
TechgoonduTechgoonduTechgoondu
  • Audio-visual
  • Enterprise
    • Software
    • Cybersecurity
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
    • Cellphones
    • Tablets
  • PC
  • Telecom
Search
© 2023 Goondu Media Pte Ltd. All Rights Reserved.
Reading: Twist in Poly Network heist, as hacker who stole digital coins says it was done for good
Share
Font ResizerAa
TechgoonduTechgoondu
Font ResizerAa
  • Audio-visual
  • Enterprise
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
  • PC
  • Telecom
Search
  • Audio-visual
  • Enterprise
    • Software
    • Cybersecurity
  • Gaming
  • Imaging
  • Internet
  • Media
  • Mobile
    • Cellphones
    • Tablets
  • PC
  • Telecom
Follow US
© 2023 Goondu Media Pte Ltd. All Rights Reserved.
Techgoondu > Blog > Cybersecurity > Twist in Poly Network heist, as hacker who stole digital coins says it was done for good
CybersecurityEnterpriseInternet

Twist in Poly Network heist, as hacker who stole digital coins says it was done for good

Grace Chng
Last updated: August 12, 2021 at 7:39 PM
Grace Chng
Published: August 12, 2021
5 Min Read
SHARE
  • PHOTO: Alesia Kozik from Pexels

The record US$613 million heist of digital coins from decentralised finance platform Poly Network was carried out just to highlight the security failings of the platform, said the hacker.

There was no interest in the money and plan was to return the digital coins, according to the cyber criminal. On Wednesday, the person or persons returned US$260 million in digital tokens, including Ether and bitcoins.

The identity of the hacker – or hackers – has not been established although blockchain forensic specialists have traced the hacker’s digital footprints.

In a long Q&A that appeared like a self-interview, the hacker claimed to have stayed up all night looking for a vulnerability to exploit and was worried that Poly Network would patch the security flaw without telling anyone. Hence the heist to make a point.

On its website, Poly Network states that it wants to allow a convenient way for users to swap cryptocurrencies between multiple blockchains.

The website does not say where the company is based. According to cryptocurrency media platform Coindesk, the company was launched by the founders of Chinese blockchain project Neo.

Operating on Binance Smart Chain, Ethereum and Polygon blockchains, the company used smart contracts to manage these swaps. Smart contracts are applications that sit on top of the blockchains and contain  instructions on when to release the assets to the different parties.

It was a vulnerability in the smart contract which allowed the hacker to get away with the big bundle of cryptocurrencies, tweeted Poly Network on Tuesday.

Intelligence gathered by various blockchain security analysts points out that the hacker was able to override the contract instructions for each of the three blockchains and direct the cryptocurrencies to three e-wallets, digital locations for storing the tokens.  

Intelligence experts also indicate that the weakness lies with the smart contracts which are software programs written by people. People are fallible, making mistakes that can be exploited, they say.

Responding to the heist, Nicholas Chan, the CEO of Refinable, said the blockchain technology is inherently safe.

“However, there are many additional layers on an interface and application level that require more work by various industry players to reach maturity,” he explained.

The good news is that due to swift action of many companies in the blockchain community, the damage was contained to a certain degree and the hacker has since returned part of the stolen cryptocurrency, he added.

Refinable is a Hong Kong-based firm operating multi-blockchains that provides a one-stop solution to create, discover, trade and leverage non-fungible tokens.

“We can attribute this to the collective efforts of well-intentioned parties around the world, dedicated to maintaining the transparency, security and integrity of a decentralised party,” Chan added.

The nature of blockchain technology is that it is open so everyone can see the cryptocurrencies being moved across the network into the hackers’ wallets. Chan points out that since the transactions are publicly accessible, they provide a deterrent for malevolent behaviour.

“In the centralised financial institution world, an incident like this may have stayed buried and not see the light of day,” he argued.

After discovering the heist, Poly Network traced the digital addresses of the e-wallets and asked the community for help. Some crypto exchanges blacklisted these e-wallets to prevent the cryptocurrencies from being moved and stored there.

This is the biggest cryptocurrency heist in history. The BBC reports that in the last 12 months there have been other similar attacks: Yearn Finance which lost US$11 million to hackers in February, Alpha Finance, which had US$37 million stolen in the same month; and Meerkat Finance which was drained of US$32 million in March.

What this latest heist shows is that hackers can cause digital fortunes to be wiped out. One question will once again be asked: how and when will the regulatory authorities move in to more tightly regulate the cryptocurrency market?

Through supply chain attacks, hackers now compromise thousands of users to get to a few
Singtel launches 5G Standalone network, claims pole position in Singapore
Box OneCloud lets apps save data to the cloud
Users are demanding more horsepower from their PC workstations for AI: HP
ANA switches to Oracle ERP Cloud, improves compliance and ability to make business
TAGGED:blockchaincryptocurrencycybersecurityEthereumPoly NetworkPolygon

Sign up for the TG newsletter

Never miss anything again. Get the latest news and analysis in your inbox.

By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Share This Article
Facebook Whatsapp Whatsapp LinkedIn Copy Link Print
Avatar photo
ByGrace Chng
Follow:
A seasoned writer, author and industry observer, Grace was the key tech writer for The Straits Times for more than three decades. She co-founded and edited Computer Times, later renamed Digital Life. She helmed this publication, the de facto national IT magazine, for nearly 19 years. Grace is also the editor and co-curator of Intelligent Island: The Untold Story of Singapore’s Tech Journey, a book highlighting Singapore’s ICT development.
Previous Article Q&A: Supply chain attacks still rare but pose tough problem, says FireEye Mandiant
Next Article In latest bid to drive foldable phone sales, Samsung amps up Galaxy Z Fold3, Galaxy Z Flip3
Leave a Comment

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Stay Connected

FacebookLike
XFollow

Latest News

Promising speed and better coverage, Singtel 5G+ targets premium users
Mobile Telecom
May 15, 2025
Fujifilm GFX100RF review: Fun medium-format street photography camera
Imaging
May 14, 2025
Looks over AI? Samsung pitches slimmed-down Galaxy S25 Edge
Cellphones Mobile
May 13, 2025
Stunning AI advancements could transform healthcare, education and agriculture globally: Bill Gates
Internet
May 7, 2025

Techgoondu.com is published by Goondu Media Pte Ltd, a company registered and based in Singapore.

.

Started in June 2008 by technology journalists and ex-journalists in Singapore who share a common love for all things geeky and digital, the site now includes segments on personal computing, enterprise IT and Internet culture.

banner banner
Everyday DIY
PC needs fixing? Get your hands on with the latest tech tips
READ ON
banner banner
Leaders Q&A
What tomorrow looks like to those at the leading edge today
FIND OUT
banner banner
Advertise with us
Discover unique access and impact with TG custom content
SHOW ME

 

 

POWERED BY READYSPACE
The Techgoondu website is powered by and managed by Readyspace Web Hosting.

TechgoonduTechgoondu
© 2024 Goondu Media Pte Ltd. All Rights Reserved | Privacy | Terms of Use | Advertise | About Us | Contact
Join Us!
Never miss anything again. Get the latest news and analysis in your inbox.

Zero spam, Unsubscribe at any time.
 

Loading Comments...
 

    Welcome Back!

    Sign in to your account

    Username or Email Address
    Password

    Lost your password?