Missing Crypto Timeline: The history of $3 Billion+ in lost money of the future
Where has all the “money” gone?
A standard pitch for cryptocurrency might include the premise that you would want to convert some of your net worth into balances on a distributed ledger, and that it would be more secure than ol’ regular money, because a cryptocurrency like Bitcoin is stored on a public blockchain with a system of managing “private keys”; like passwords, which, if created and stored properly, ensure that your wealth is totally untouchable.
And that may be true, but I think the reality of the cryptocurrency investing and/or trading industry today is that most users are not technically capable of interacting directly with the blockchain(s) their digital assets are stored on; or, that is, incapable of generating a private key for a new, secure Bitcoin address, or interpreting the Solidity code in an Ethereum smart contract.
So, in my opinion, that means the majority of cryptocurrency “users,” (as well as “investors,” since there aren’t any Bitcoin ETFs yet…) will have to depend on 3rd party services for interacting with the network(s), i.e. a Bitcoin exchange or an EOS wallet service. Entities which fully resemble the centralized gatekeepers which members of the crypto community often say are the cause of plain ol’ regular money’s problems…
Problems such as funds going missing, or worse, being stolen
The largest cash robbery in US history, for example, was the Dunbar Armored robbery in 1997; an armored truck facility was robbed for $18.9 million, the equivalent of $29.5 million today, thanks to inflation. This was found to have been an inside job, and about $10 million was left unaccounted for; though, the money was more than likely insured.
In comparison: just ~4 years after the Bitcoin whitepaper was published, in mid-2013, the Vircurex exchange was allegedly hacked for an amount of BTC which was worth $50 million at the time, prompting the service to suspend withdrawals. Customers who are still waiting for those funds back have launched legal suits, claiming they have found reason to believe it, too, was an inside job. This happened before anyone was offering crypto theft insurance.
This was not the first or the largest incident involving lost or stolen cryptocurrency
Actually, relatively nobody in today’s cryptocurrency industry even remembers the Vircurex hack, because the more widely known and financially significant alleged hack involving Mt Gox happened shortly after, in 2014. That incident, too, has been theorized to be an inside job, and the legal suits are still ongoing.
Although, before jumping to conclusions, remember that it is easy to confuse an “inside job” with a “social engineering”-type hack. For instance, Mt Gox was robbed before, in 2011, when a computer for one of their auditors was compromised and a hacker was able to divert Bitcoins from the exchange’s hot wallet to themselves.
These three incidents alone should give anyone considering purchasing a significant amount of cryptocurrency from an exchange some serious things to consider, such as the risk of holding said cryptocurrency on said exchange for longer than necessary. But there’s far, far more examples and security concerns to consider, i.e.: To register for many crypto exchanges, you must share with them your personal information, which can also be stolen. This year, in February, the exchange CoinMama announced that 450,000 of their users’ email addresses and passwords had been leaked, for example.
To help keep track and come to a better understanding of incidents similar to the Vircurex and Mt Gox hacks, which will hopefully help people avoid being afflicted by such events, I’ve made a huge list of all the “Missing Crypto” incidents which are publicly known. Until others get a chance to review it, it obviously shouldn’t be called complete, but it can still absolutely be useful even if it’s missing some examples. Please tell me if you know of any that should be included!
Here is where you can download a spreadsheet with the data, or a printable PDF report with charts:
Some top-level statistics from this list are:
- All: 121
- Bitcoin-Related: 78
- Bitcoin-Related, # of BTC known: 61
- Ethereum-Related: 20
- Exchange-Related: 52
- ICO-Related: 20
- Hacks: 69
- Pyramid / Ponzi-Schemes: 16
- Ransomware / Extortion: 9
Total Amounts Involved (At The Time Of Incidents), by $USD million:
- All: 3842.868
- Bitcoin-Related: 2286.832
- Bitcoin-Related, # of BTC known: 1594.732
- Ethereum-Related: 302.732
- Exchange-Related: 1742.861
- ICO-Related: 1120.340
- Hacks: 1617.452
- Pyramid / Ponzi-Schemes: 1724.692
- Ransomware / Extortion: 5.641
Keep in mind that the “Missing Crypto” is no longer worth what it was when it went missing. In fact, it was once worth much more:
At the end of 2017, as Bitcoin’s price peaked, so did the value of any Bitcoin which had been stolen or gone “missing.” According to the list and information provided here, the “Missing Bitcoins” could have at one point had a face value of nearly $30 billion dollars; but, since November 2018 they capitulated with the rest of the cryptocurrency market to around $6 billion.
The “Bitcoin-Related” and “Ethereum”-related Incident Types are the only rows here which had known crypto amounts, so just know that the “Pyramid / Ponzi” incidents definitely involved more “Missing Bitcoin,” but only the incidents with explicitly quantified amounts of crypto included those values.
It is quite staggering to calculate what the 25,000 Bitcoins involved in the “first Bitcoin hack,” which was against BitcoinTalk user “allinvain,” are worth today…
But in all, the most concerning information I read in the course of creating this timeline had to do with the suspected, and in some cases, indicted or convicted parties which perpetrated the hacks or exit scams included in the list. Most alarming was what I read about North Korea:
- “Recent reports indicate that intelligence services in South Korea suspect that North Korea is behind additional attacks against domestic cryptocurrency exchanges, including market-leader Bithumb.” (CoinDesk)
- “Group-IB’s recently published document regarding the two years of covered cyberattacks discusses 14 separate incidents, of which five were potentially instigated by Lazarus. These attacks include ones on an exchange called Yapizon in South Korea, in which the total sum lost exceeds $5 million in crypto funds. There are also attacks on Coinis, YouBit, and Bithumb in June of this year, in which the total lost money amounts to approximately $32 million…Aside from attacking digital exchanges, North Korea is also being blamed for purportedly running cryptocurrency-related scams and phony ICOs.” (Blockonomi)
- “Insikt group says it has linked, with varying degrees of certainty, North Korean operatives to two ICOs issued in Singapore -the Interstellar/Stellar/HOLD coin and Marine Chain.” (CrowdfundInsider)
- “One of the things we know from defector testimony, for example, is that North Korea has built a network of operational bases in foreign countries where they execute cyber operations…” “Moriuchi, who is now at the digital intelligence firm Recorded Future, estimates that North Korea earns between $15 million and $200 million by creating and selling cryptocurrencies and then turning it into hard cash.” (Vox)
And yes, that is the same North Korea who kept American citizen Otto Warmbier prisoner after probably framing him for the treasonous act of stealing a poster; the same North Korea who kept launching missiles over Japan up until 2017; same North Korea whose embassy in Spain was just recently raided for no known reason. Not that there’s anything wrong with that, but with everything else about North Korea, yes it’s wrong, and I would be concerned about the prospect of North Korea or any of the other active, malevolent cyber groups out there targeting me or my business…if I had any interest in using or investing in cryptocurrency.
As more information comes out related to these incidents, as well as more like them, I will be periodically making updates to this timeline. You can find those on my Medium page, or reach me on Twitter. There have already been three such incidents in the time that I’ve spent working on this third update; those were:
- DragonEx was hacked, allegedly by North Korea’s group, Lazarus: “360 Core Security found that Lazarus, also known as the ATP-C-26 group, used software called “Worldbit-bot” to carry out its active attacks. The crypto exchange DragonEx fell victim to it on March 24, 2019, leading to a loss of $7.09 million, according to the 360 Security report.” (Bitcoin Magazine)
- Coinbene is suspected to have been hacked for ~$105 million, by Elementus. Concurrently, their exchange has suspended trading and re-opened withdrawals, but only for some coins; meanwhile, there are many users reporting issues with their Coinbene transactions of “MXM” tokens.
- Bithumb claims they were hacked in an “inside job” for $13 million in EOS. (CoinDesk)
2019 may be the year of the hack…
- A shit-ton of Facebook user data was found right in plain sight on Amazon Cloud servers
- Think twice before torrenting Game of Thrones, the files are riddled with malware
- Skype is now answering calls by itself, just like that FaceTime bug
- Jeff Bezos was hacked by the Saudis, according to his investigator
- Over a million people had credit card details stolen from multiple restaurant chains