SECURITY INCIDENT: BigONE Exchange Hot Wallet Hacked for ~$27M

cryptoenthusiast

Hey folks — heads up on a major exchange security incident.

BigONE has confirmed a significant hot wallet breach, with attackers making off with an estimated $27 million in crypto. The attack was detected on July 16 after their monitoring systems picked up abnormal activity.
What Happened:

Third-party attack targeted BigONE’s hot wallet infrastructure

Private keys remain secure, but attackers exploited a production network vulnerability

The breach was traced back to likely compromised CI/CD pipelines or server management tools

Attackers disabled key risk-control checks, allowing them to bypass defenses

Affected Assets (estimates):

120 BTC

350 ETH

Millions in USDT (multi-chain)

Other tokens: SHIB, CELR, SNT, and more

Stolen funds have reportedly already been converted to WETH/ETH and are being routed through fresh wallets, likely prepping for mixing via DEXs or privacy services.
Response:

BigONE is working with SlowMist to trace attacker wallets + monitor stolen assets

Cyvers reports attack began with malicious binaries on account-operation servers

Internal security reserves (BTC, ETH, USDT, SOL, XIN) activated to cover all user losses

For other tokens, they’re tapping external liquidity through borrowing

“We’ve identified the attack path and contained it to prevent further loss,” BigONE said.
“All affected users will be made whole.”

️ Security Lessons:

CI/CD and server-side security are critical, not optional

Lack of pre-transaction validation, poor segmentation, and single-point wallet management were major weaknesses

Recommendation from security experts:

    Harden your CI/CD pipelines

    Implement automated incident response

    Use on-chain/off-chain real-time monitoring

This hack follows the $3.5M exploit of Arcadia Finance just a day earlier, suggesting we’re in the thick of yet another security-heavy week in crypto.

Stay safe out there.
#BTC #crypto #coin #scam #stolen