Crypto Exchange Cryptopia Appoints Liquidators Months After Being Hacked

New Zealand-based cryptocurrency exchange Cryptopia, which was hacked in January of this year for an estimated $23 million worth of cryptos, has recently appointed David Ruscoe and Russell Moore as liquidators, and halted trading on its platform.

According to local news outlet Stuff, Ruscoe noted the liquidator, professional services firm Grant Thornton New Zealand, realizes Cryptopia’s customers want to see the issue resolved as soon as possible. He added:

We will conduct a thorough investigation, working with several different stakeholders including management and shareholders, to find the solution that is in the best interests of customers and stakeholders.

The cryptocurrency exchange has suspended trading on its platform while the investigation is ongoing. It’s expected to take months over the “complexities involved.” Grant Thornton noted Cryptopia’s management tried to cut costs after being hacked in January to become profitable again, but decided appointing liquidators was in the best interest of its staff, customers, and stakeholders.

The company’s premises in Christchurch have been locked down, and the company has since posted a notice on its website and on social media informing users of what’s going on.

As covered, Cryptopia’s hack was seen as an unusual one, as instead of being able to drain one cryptocurrency wallet right after gaining access, hackers seemingly managed to withdraw funds from various wallets over an extended period of time, suggesting staff wasn’t able to stop them.

Experts believe the exchange’s hackers managed take as much as $23 million worth of ether and ERC-20 tokens, and had reportedly cashed out as much as $3.2 million by February, $2 million of which through a decentralized exchange.

Cryptopia itself was allowed to reopen in February, and according to Stuff people close to the company revealed it had been cutting costs as much as possible, “leaving a skeleton crew,” to try and stay afloat.

Commenting on Cryptopia’s announcement, various customers expressed frustration over not being able to withdraw their funds after the security breach. Some called for creditors to take legal action against the trading platform.

P2P Token Trading Platform AirSwap Discloses ‘Critical Vulnerability’

  • Peer-to-peer trading platform AirSwap claims to have identified a "critical vulnerability" in one of its smart contracts. 
  • Ten addresses have been identified so far as being at risk of exploitation. 

Peer-to-peer token trading network AirSwap has disclosed a “critical vulnerability” in a newly released smart contract. 

AirSwap's Critical Vulnerability

According to the disclosure, which was published on Sept. 13, AirSwap’s internal security team identified a potential exploit in a newly released mainnet smart contract. The vulnerability would allow an attacker to “perform a swap without requiring a signature from a counterparty.” 

AirSwap claims that the offending code was only present for twenty-four hours on the network before being identified and removed. However, users of AirSwap Instant between Sept. 11 and Sept. 12 may have been affected by the vulnerability, with the report claiming that 10 accounts have been recognized so far as being at risk. 

AirSwap has published the addresses to the vulnerable accounts, telling all other users that no further action is required. The report also outlines the step-by-step actions taken by the exchange in the aftermath of discovering the vulnerability, including an apology to its client base, 

We would like to deeply apologize to our affected users for any inconvenience these vulnerabilities may have caused, and hope that the important lessons we continue to learn throughout these processes form the basis for a more open, secure, and efficient trading environment.

Featured Image Credit: Photo via Pixabay.com