 |
| Hackers steal $8 million from BitKeep wallet users |
Several BitKeep cryptocurrency wallet users said their wallets were emptied over Christmas after hackers stole their contents through unverified transactions.
BitKeep is a decentralized cryptocurrency blockchain wallet that supports over 30 blockchains, 20,000 decentralized applications, and 223,000+ assets. It is used by more than 8 million people in 168 countries to manage assets and transactions.
Although the platform has not made any official announcement about the incident on its website, it has informed users through its official Telegram channel that the incident may have affected users who downloaded an unofficial version of the BitKeep app.
"Following an initial investigation by the team, hackers are suspected of having compromised certain (app-specific) APK downloads and installing malicious code inside them," BitKeep's announcement reads. Note that an APK is an Android package or Android bundle package that is used to distribute apps to be installed on Android devices outside of the official app store.
BitKeep added, "If your money has been stolen, the app you are downloading or updating may be an unknown version (unofficial version) and it has been hacked."
Users who have downloaded the hacked APK file are advised to transfer all funds to the official store after downloading the official app from Google Play Store and App Store and then create a new wallet address to which they can transfer all funds.
The platform warns that any wallet address generated using malicious APK files should be considered hacked. For those who have been hacked, please fill out this form for the BitKeep Support Team to provide a timely solution.
BitKeep did not disclose how much money was lost as a result of these breaches, but transaction tracking service PeckShield reported that nearly $8 million in assets have been stolen so far.
Casualties are expected to mount as attacks continue, hackers exploit holidays, and delay vulnerability scans and incident response procedures.
Last October, BitKeep suffered a loss of nearly $1 million after a hacker exploited a flaw in the service that allowed it to make random currency swaps. At the time, BitKeep promised full compensation to those affected by the incident.
However, since the current attack is the result of an APK scam hacked by the user, a refund is unlikely.