Key Takeaways
- The stolen funds, valued at $25 million, were redirected to six distinct cryptocurrency wallet addresses.
- Kronos states the stolen funds do not constitute a significant portion of its equity.
In a recent security breach, Taipei-based trading and venture capital firm Kronos Research experienced unauthorized access to its API keys, resulting in the loss of approximately 13,007 ETH, valued at around $25 million during the incident. The breach prompted Kronos Research to promptly suspend all trading operations, affecting Woo X, an exchange developed by Kronos, where trading activities were temporarily halted.
A detailed analysis by blockchain investigator ZachXBT unveiled that the stolen funds, estimated at $25 million, were redirected to six distinct cryptocurrency wallet addresses. The transactions, ranging in value from 2,780 ETH to 2,507.52 ETH, were traced back to a Kronos Research account, offering insights into the scale of the security breach.
On November 18, Kronos Research disclosed the unauthorized access through its API, leading to an immediate suspension of all trading activities. Initially, the company did not disclose the value of the stolen assets. Zachxbt, an online investigator, estimated the loss to be over $20.3 million. However, a subsequent update shared via X (formerly Twitter) revised the figure, revealing that hackers had managed to steal digital assets worth $26 million.
In response to the breach, Woo X, the associated exchange, reassured users about the safety of their funds. Nevertheless, the loss of liquidity due to Kronos’ trading suspension led to the temporary blocking of certain asset pairs. Despite this setback, spot and perpetual trading have since resumed normal operations.
Kronos Research has committed to a thorough assessment of the situation and plans to restart trading operations in the coming days. The company emphasized that the stolen funds do not constitute a significant portion of its equity.
This incident is the latest in a series of security breaches affecting the cryptocurrency industry. Notably, Poloniex experienced a significant security breach on November 10, resulting in the theft of at least $100 million in cryptocurrency. The exchange responded by disabling the affected wallet after detecting suspicious outflows.
