Key Insights:
- Mixin Network suffers a $200M loss from a cloud service breach.
- Mixin collaborates with Google and SlowMist for investigation.
- Hacker’s address 0x1795 linked to previous Mixin transactions.
Mixin Network, a notable decentralized connection of peer-to-peer entities, recently navigated through a significant security predicament. As the calendar marked September 23, 2023, revelations of a security fissure surfaced, culminating in the unfortunate depletion of nearly $200 million in intangible assets. The breach was rooted in compromising a third-party cloud service provider’s database, which Mixin Network depended upon.
[Announcement] In the early morning of September 23, 2023 Hong Kong time, the database of Mixin Network's cloud service provider was attacked by hackers, resulting in the loss of some assets on the mainnet. We have contacted Google and blockchain security company @SlowMist_Team…
— Mixin Kernel (@MixinKernel) September 25, 2023
To rectify the situation and uncover the mystery behind the hack, Mixin Network promptly collaborated with Google and blockchain security company SlowMist. The objective behind this partnership is clear: to ensure a thorough investigation and, more importantly, to recover the stolen assets to the best extent possible.
Before the breach, Mixin Network’s portfolio was a formidable one, boasting assets like Ether (ETH), valued at $94.48 million, Dai (DAI) at $23.55 million, and Bitcoin (BTC) at $23.3 million. These figures, sourced from an investigation by PeckShield, put Mixin Network’s total portfolio at $141.32 million.
Tracing the Culprit
An independent investigation by 0xScope, a Web3 SaaS analytics platform, reveals another intriguing dimension to this case. According to their analysis, there is a historical tie between the hacker and Mixin Network.
The hacker’s address, 0x1795, received 5 ETH from Mixin in 2022, which was later transferred to Binance. Moreover, this same address reportedly converted its loot from Tether (USDT) to Dai (DAI), possibly to avoid freezing of funds.
An address connected to the recent $200M @MixinKernel #hack received 5 $ETH from the platform last year and deposited 5.9 $ETH on #Binance soon after.
Also, the hacker then swapped $USDT for $DAI to avoid being frozen.
See how the hackers used addresses in the Mixin attack below pic.twitter.com/x3rfyMAv5W— 0xScope (🪬 . 🪬) (@ScopeProtocol) September 25, 2023
Following the unfortunate incident, Mixin Network temporarily suspended all deposit and withdrawal services in its bid to protect its users. The company has been forthright, confirming that these services will be reinstated once they are confident that the vulnerabilities have been identified and rectified.
It’s also worth noting that while the founder of Mixin, Feng Xiaodong, had promised an explanatory livestream session, links to the same were conspicuously absent from their official channels, raising more eyebrows and questions.
Mubashir Ahmed is a multifaceted market analyst with extensive knowledge of the blockchain industry. He is proficient in market analysis and blockchain technology, having had experience with numerous projects in the space. He has a deep understanding of the Cryptocurrency industry, its trends, and how to best approach investing in it.
