Crypto Holders to Fall Victims of Outlook Flaw

Attackers gained access to users' emails using the support service employee account login data, set up email forwarding and stole crypto
30 April 2019   606

Several cryptocurrency holders reported to Motherboard about the about hacker attack on theeir Microsoft Outlook service mailboxes.

According to the publication, the attackers gained access to users' emails using the support service employee account login data. This supposedly allowed them to view the contents of any unincorporated Outlook, Hotmail and MSN accounts.

The hackers also had access to my inbox allowing them to password reset my Kraken.com account and withdrawal my Bitcoin.
 

Jevon Ritmeester

User, Microsoft

According to Jevon, after hacking, the attackers didn't show themselfs, but they set up the mailbox to forward messages with "Kraken" world to their address, including requests for changing the password.

Ritmeester discovered that the attack, only when he decided to check the folder with the deleted letters. In this case, the user has lost one Bitcoin, however, there is evidence that there are other victims.

“My account was hacked as a direct result of this,” Reddit user shinratechlabs wrote earlier this month, adding that he lost “25,000 in crypto".

“Same exact for me only a lot less funds stolen, sucks,” another Reddit user, mickey_ficke, added.

Ritmeester explained that he did not use two-factor authentication, which could protect his account in this case.

Customers who believe they have been impacted beyond what was outlined in the company’s notification should contact the Microsoft support team for assistance.
 

Microsoft

Previously, Microsoft stated that the vulnerability affects only the mailbox details.

I feel Microsoft is trying to cover up and is not taking this seriously. I think Microsoft talks about this way to lightly [sic] about this leak and I think there are a lot of users who have suffered damage in one way or another as there is a lot of sensitive information in an inbox.I am planning to at least file a police report and thinking about holding Microsoft liable for the financial damage and the fact that a lot of my personal information may get leaked in the near future.
 

Jevon Ritmeester

User, Microsoft

In March, Kraken announced that it would implement two-factor authentication as a must option for all its users.

Bittrex to Go For Maintenance After 1/3 Funds Moved

Users suspects hack, but exchange says "funds are safe"
05 December 2019   75

The Bittrex cryptocurrency exchange has announced scheduled maintenance today, December 5, from 22:00 to 23:00 (GMT). On the eve, a third of its assets were transferred to an unknown wallet.

During maintenance, users will not be able to log into the system or use the APIs. Trading will be suspended.

On December the 4th, populat Twitter account posted that "43,564 #BTC (313,074,134 USD) transferred from Bittrex to unknown wallet." Users suspected that the exchange was hacked, but the exchange . 

Closures for scheduled maintenance only heightened suspicion. However, the Bittrex team assures that "that claim is false."