Reserved IP Address°C
01-20-2025
BSV
$52.62
Vol 72.76m
2.39%
BTC
$102930
Vol 142238.3m
2.02%
BCH
$433.13
Vol 516.92m
0.83%
LTC
$118.64
Vol 1674.45m
3.48%
DOGE
$0.35
Vol 8637.24m
-0.43%
Getting your Trinity Audio player ready...

A serious vulnerability has been discovered in a cryptocurrency wallet app, putting millions of dollars’ worth of user cryptocurrency at imminent risk of theft. The vulnerability was discovered in the Agama wallet app, which runs on the Komodo platform, during an independent security audit of the code this week.

When alerted to the hack, the Komodo team used the same exploit to take user funds out of compromised accounts and move them to safe storage, a risky tactic that saw them effectively hack their own app to protect users.

The tactic appears to have saved some 96 SegWitCoin (BTC), worth around $13 million, before a hacker stumbled over the funds.

In a post on their blog, Komodo described its response to the attack, and how users affected can reclaim funds removed from their wallets. According to Komodo, “After discovering the vulnerability, our Cyber Security Team used the same exploit to gain control of a lot of affected seeds and secure the funds at risk. We were able to sweep around 8 million KMD and 96 BTC from the vulnerable wallets, which otherwise would have been easy pickings for the attacker.

“The safe wallets RSgD2cmm3niFRu2kwwtrEHoHMywJdkbkeF (KMD) and 1GsdquSqABxP2i7ghUjAXdtdujHjVYLgqk (BTC) are under the control of the Komodo Team, and assets can be reclaimed by their owners. See our support page article for details.”

Nevertheless, serious questions will now be asked of the firm and its security setup, with attention turning to the integrity of its other apps.

The backdoor was uncovered by a team at the npm JavaScript package repository, which found a malicious update for the electron-native-notify library.

The team found that the update was in fact a supply chain attack aimed at an alternative target downstream. Agama was using EasyDEX-GUI, which was directly loading the compromised library.

The team responsible for uncovering the attack said the script would collect sensitive information, including passwords, and record them on a remote server, making the subsequent theft a straightforward process.

While Komodo appears to have got off lightly, the firm must now prioritize security to ensure this cannot happen again.

Recommended for you

BTC miner Bit Digital acquires Montreal site, new client announced
Bit Digital has spent $23 million on the Montreal site, which it will customize to host a 5MW data center...
January 10, 2025
Hive Digital shifts operations to Texas, targets Trump-era support
Hive also revealed that its operational hash rate shot up 50% due to operational efficiencies and lower power costs, and...
January 8, 2025
Advertisement
Advertisement
Advertisement