Yesterday we've covered the hacking of Nicehash bitcoin wallet. At that time there were no official comments released about the scale or the exact method of attack.
Now, we have at least some information released by Nicehash team. Total amount of 4700 Bitcoin was stolen by as of yet unknown hacker, or a group of hackers.
The attack commenced on 1:18 AM CET according to available VPN logs. It was performed through a compromised computer at the company's office. The forensic analysis to determine the exact way the security was breached is ongoing. At 1:37 AM hacker logged in with the credentials of one of Nicehash engineers. During the next perpetrators studied the payout system and tried to modeled its work. At 3:24 AM they performed the transfer and have successfully stolen money from Nicehash account.
Local and international authorities and law enforcement organizations are on the case, and the local investigation is in full swing. From all the evidence it seems quite obvious, that the attack was extensively prepared and well-coordinated effort, because existing security systems should have filtered out any such attempt. Unfortunately, the company refused to comment on the internal investigation into possible insider leaks, citing ongoing investigation.
The most important question is, of course, what happened to the miners' accounts. Right now, Nicehash is in communication with the largest cryptocurrency exchanges to track and return the stolen money. The representative said during the livestream, that it will take time, but the company is looking for a way to pay the miners.
As of now, the site is still under maintenance, but the spokesperson said, that the team is working day and night to restore the functionality and to resume mining operations.