HTX

Quick Summary

HTX exchange suffered a 21,854,944 USD loss due to an access control exploit, compromising hot wallets and leading to malicious
funds transfers.




Details of the Exploit

HTX, formerly known as Huobi, is a global cryptocurrency exchange that experienced an access control exploit on November 22, 2023.
The attacker gained unauthorized access to several of HTX's hot wallets and transferred funds to multiple addresses. The stolen
funds, which included various tokens such as USDT, USDC, LINK, and ARIX, were exchanged for ETH and distributed among different
addresses. The total loss amounted to 21,854,944 USD.




Block Data Reference

Attacker Addresses:

https://etherscan.io/address/0x5A22F867DFCb4F32d25a5Fa365b9D9D78D5515dC

https://etherscan.io/address/0x121A0Ff24027fffCDd0ae008dA82f2789C7945cc




Malicious Transactions:

https://etherscan.io/tx/0xd773f61db2bd693d15b09e790a7c257b48ec926865be68a5f88f451242edbeda

https://etherscan.io/tx/0xae1189773ed6c373e0456ffce3c62c196db768ae99bbef9b2caa1568d6c3af17

https://etherscan.io/tx/0x526d2a00949f71fca0b8fe4c4eac058536e4fbea245103ec94e1a75f3cf66106

https://etherscan.io/tx/0x0bb70d29d46a988c487ed39d10acf572d151cdafd242752bb4fb6db650623503

https://etherscan.io/tx/0xa117dc4ade55c50e279b9b789b9b79468cdeb62bf1bca1d9e456b4b29f6d5a8d

https://etherscan.io/tx/0xa3feab381ffa609692701b2ccb2cb1d5b89b4dd6c7c30a2e345f2810c48c4e1a




Funds Holders as of Nov 27, 2023:

https://etherscan.io/address/0x7Ae277EC83089eE92b9c475223872056aC26b949

https://etherscan.io/address/0x6CC330b8FE6509EA81702ae14fc1901979211c6b

https://etherscan.io/address/0x12FC2841201D5ae5d6e780893De9032BbBc5b231

https://etherscan.io/address/0x5DdF1A1dc06b2bCdd836Cc408dEaFa560197d920

https://etherscan.io/address/0x5e552A4fc6d5C4F5221ca65dD91040C2C830d119

Quick Summary

HTX Global's hot wallet was exploited, resulting in the theft of 4,999 ETH (approx. $7,902,519 USD) due to an access control
vulnerability.




Details of the Exploit

On September 24, 2023, HTX, a cryptocurrency exchange platform, previously known as Huobi Global, suffered an exploit due to an
access control issue. The attacker gained access to the exchange's hot wallet and withdrew 4,999 ETH, worth approximately
$7,902,519 USD. The stolen ETH was transferred to the attacker's wallet in a single transaction, and 1,000 ETH was later sent to a
second wallet. As of September 27, 2023, the stolen amount remains in the provided addresses. HTX sent an on-chain message to the
attacker, offering a 5% white hat bounty and disclosing their true identity. Justin Sun, CEO of HTX, announced that the exchange
has fully covered the losses and resolved all related issues.




Block Data Reference

Attacker Addresses:

https://etherscan.io/address/0xdb1D74467c9042517A354304256E0d658D8AEC83

https://etherscan.io/address/0x799982b75Ba538F211871cBa50Fa1A42ADa9ab5E




Malicious Transaction:

https://etherscan.io/tx/0xe9eefff04322a1e9262aad139e7b03954709a7c2ffea5ba9d1026a24fb58c029




On-chain Message from HTX:

https://etherscan.io/tx/0x87f216527e8552c94e1f2c7b6bba167712585a7fbd385781aa5d61ba0b7f863b