bitcoin
Bitcoin (BITCOIN)
$92,391 -1.35%

Bitcoin price

ethereum
Ethereum (ETHEREUM)
$1,765 -0.96%

Ethereum price

binancecoin
BNB (BINANCECOIN)
$605.27 -1.93%

BNB price

solana
Solana (SOLANA)
$148.00 -2.08%

Solana price

ripple
XRP (RIPPLE)
$2.16 -3.73%

XRP price

shiba-inu
Shiba Inu (SHIBA-INU)
$0.000013 -3.52%

Shiba Inu price

pepe
Pepe (PEPE)
$0.000009 -5.28%

Pepe price

bonk
Bonk (BONK)
$0.000014 -8.31%

Bonk price

bitcoin
Bitcoin (BITCOIN)
$92,391 -1.35%

Bitcoin price

ethereum
Ethereum (ETHEREUM)
$1,765 -0.96%

Ethereum price

binancecoin
BNB (BINANCECOIN)
$605.27 -1.93%

BNB price

solana
Solana (SOLANA)
$148.00 -2.08%

Solana price

ripple
XRP (RIPPLE)
$2.16 -3.73%

XRP price

shiba-inu
Shiba Inu (SHIBA-INU)
$0.000013 -3.52%

Shiba Inu price

pepe
Pepe (PEPE)
$0.000009 -5.28%

Pepe price

bonk
Bonk (BONK)
$0.000014 -8.31%

Bonk price

bitcoin
Bitcoin (BITCOIN)
$92,391 -1.35%

Bitcoin price

ethereum
Ethereum (ETHEREUM)
$1,765 -0.96%

Ethereum price

binancecoin
BNB (BINANCECOIN)
$605.27 -1.93%

BNB price

solana
Solana (SOLANA)
$148.00 -2.08%

Solana price

ripple
XRP (RIPPLE)
$2.16 -3.73%

XRP price

shiba-inu
Shiba Inu (SHIBA-INU)
$0.000013 -3.52%

Shiba Inu price

pepe
Pepe (PEPE)
$0.000009 -5.28%

Pepe price

bonk
Bonk (BONK)
$0.000014 -8.31%

Bonk price

Crypto News

Bybit Suffers $1.4B Hack as Attackers Drain Ethereum Cold Wallet

AuthorRaymond Munene
Crypto News Author
Fact Checked by Wajeeh Khan
Last updated: February 21, 2025
Disclosure
Cryptocurrency trading is speculative and your capital is at risk when you trade. We may earn affiliate commissions from some of the products on this page - at no extra cost to you.
Bybit Suffers $1.4B Hack as Attackers Drain Ethereum Cold Wallet

Highlights:

  • Bybit lost $1.4 billion in Ethereum through a phishing attack targeting its cold wallet.
  • Hackers manipulated the wallet’s smart contract using a deceptive interface to authorize transfers.
  • The attacker moved and sold the stolen funds via decentralized exchanges, impacting ETH’s market price.

Bybit reported a security breach on Friday, from which the hackers stole more than $1.4B in ETH from the cold storage. This Singapore-based company said that this attack was conducted with a high level of sophistication where the phishing attack had the aim of altering the wallet’s smart contract capability to allow private transfers.

Advertisement

Banner

This event became known after the on-chain analyst ZachXBT reported unusual outflows of $1.46 billion at 10.20 AM ET. The hacker immediately withdrew these funds, which include ETH, stETH, and mETH tokens, to their wallets. The attacker decided to spread the stolen funds to several wallets and exchange large sums of the tokens via Uniswap and KyberSwap platforms.

CEO of Bybit, Ben Zhou, reacted within 30 minutes to the hackers’ report about the exploit. Zhou said that the attackers used a deceptive transaction interface known as a ‘musked’ transaction, which actually shows the correct wallet ID and URL. This deceived Bybit’s team into signing a transaction that modified the nature of its smart contract within the cold wallet. Therefore, the hacker gained full control of the wallet meaning that they were able to fully and entirely empty the wallet’s ETH balance.

Funds Split and Liquidated via Decentralized Exchanges

According to the data from the blockchain, the attacker initially transferred 400,000 ETH (about $1.1 billion) to a wallet starting with 0x476. The other comparatively lesser figures corresponded to 90,000 stETH, 15,000 cmETH, and 8,000 cETH. The hacker used the “sweep ETH function” to move the funds in one go, ensuring they took all the tokens down to the last unit.

The majority of the assets were later transferred to another address (0xa4b2), where the hacker proceeded to swap the tokens for ETH using decentralized exchanges. Consequently, the market saw a noticeable effect of this liquidation process. The price of Ethereum dropped by over 4% due to the circulating stolen ETH dumped into the market. Within the first half an hour, a significant $200 million stETH tokens were liquidated, aggravating the market sentiment.

However, Bybit’s team assured customers that the theft affected only one cold wallet. The exchange stated that all other hot and cold wallets remain intact and safe. Withdrawals continue to function as usual, and the exchange fully backs and reserves all clients’ funds on a 1:1 basis. “Bybit is solvent even if this hack loss is not recovered,” Zhou stated.

Security Measures Underway as Investigation Continuous

Bybit immediately responded to the attack situation by checking it while continuing to operate and further investigating the matter. The hack also coincided with the scheduled maintenance on the exchange’s live server. This added to the early theories about the cause of the incident. However, Zhou stressed that the maintenance work had no link with the hack.

In the phishing scheme, the hackers relied on human error by duping users through a fake interface that resembled Safe, a wallet management tool. All the signers saw legitimate details in the compromised transaction, masking the underlying malicious code. Thus, it enabled the attacker to breach Bybit’s defenses. This sheds light on the modern approaches to threat attacks in the cryptosphere.

eToro Platform

Best Crypto Exchange

  • Over 90 top cryptos to trade
  • Regulated by top-tier entities
  • User-friendly trading app
  • 30+ million users
9.9

5 Stars

Visit eToro

eToro is a multi-asset investment platform. The value of your investments may go up or down. Your capital is at risk. Don’t invest unless you’re prepared to lose all the money you invest. This is a high-risk investment, and you should not expect to be protected if something goes wrong.

Advertisement

Banner

Related Articles:

Advertisement

Banner

Advertisement

Banner