Text | Mandy, Binmeng
Late at night on March 7th, Beijing time, the digital currency exchange Binance has suspended the withdrawal of all currencies.
At the same time, the entire cryptocurrency market, including Binance and Huobi, plummeted, and mainstream currencies such as BTC, BCH, and ETH all fell by more than 5%. Binance’s BTC/USDT transaction also saw a large number of sell orders, with BTC falling below $10,000.
According to reports from several users, the Binance trading system malfunctioned on the evening of March 7. The specific performance was that many investors’ altcoins were sold at market prices and exchanged for bitcoins without knowing it, mainly involving more than 20 currencies. .
It is rumored that the failure of Binance was mainly caused by some API robots being hacked. Hackers used stolen user accounts to buy VIA at a high price, resulting in the highest price of VIA being pulled to $0.025, an increase of more than 11,000% compared with the lowest point in 24H. .
As of press time, the Binance official Chinese group administrator replied in the user group:"It was not stolen, and the API withdrawal required email confirmation, but it was sold. Now the situation has been stopped, and the currency withdrawal cannot be withdrawn. We are confirming why these users have problems. "
However, a user of Binance’s Chinese Telegram group claimed that at 9:12 pm on March 7, Biyou automatically traded without using the API, and the amount was 10,000 US dollars.
In theory, after the transaction is closed, the hacker will authenticate the user without 2FA (2FA refers to 2 Factor Authentication, that is, two-factor authentication: combining passwords and physical objects such as credit cards, SMS mobile phones, tokens or fingerprints to authenticate users. method.) In the case of withdrawal, you cannot leave.
But in reality, hackers can actually create empty orders on other exchanges, and when the currency value drops, they can harvest and leave the market on other platforms. For the stolen users, they can only face the exchanged net value in the wallet. 0's"Garbage coins"。
Coincidentally, Huobi also had a pending order that could not be canceled today, and it was rumored that it was once attacked, but it was resolved without large-scale impact.
