top of page

CYBER & INFOSEC

"blogger, InfoSec specialist, super hero ... and all round good guy" 

DISCUSSIONS, CONCEPTS & TECHNOLOGIES FOR THE WORLD OF

JOIN THE DISCUSSION

If You Invest In Crypto, Your Funds Could Be At Risk from Hackers

  • Writer: Shannon Flynn
    Shannon Flynn
  • Apr 21, 2022
  • 3 min read

Cryptocurrency’s popularity has skyrocketed over the past few years. Many private investors and companies are embracing these assets for their independence and security, but the latter may be misleading. Crypto funds are vulnerable to hackers, too.


Blockchain technology, which cryptocurrency runs on, has many security benefits. These networks’ complexity and near-constant reviewing mean successful hacks against the blockchain itself are unlikely. However, hackers can still steal crypto by other means.


Cryptocurrency Security Issues


Cybercriminals stole $1.9 billion in cryptocurrency in 2020, despite many people thinking crypto is unhackable. Here are a few common ways that hackers can steal cryptocurrency despite its built-in protections.


Hacking Crypto Exchanges and Wallets


While blockchain technology itself is secure, you have to use a crypto exchange to buy and sell cryptocurrency. These exchanges are a favorite target for hackers. Since exchanges serve as an intermediary for crypto transactions, they have access to users’ wallets. Consequently, if a hacker infiltrates the exchange, they could access funds in these wallets.


Investors can move their cryptocurrency to wallets away from these exchanges, but even these are susceptible to hacking. Users need a key to access their wallets, and if that key is not in a secure location, hackers could steal it and unlock their wallets.


MFA Exploits


Multi-factor authentication (MFA) is an essential security feature, but it can also provide a gateway for hackers. Attackers can use SIM swapping, where they impersonate a target and convince telecom companies to give them control of a SIM card, to intercept MFA tokens. Alternatively, they could employ man-in-the-middle attacks to intercept MFA messages and gain account access.


Exploits like these have led to some of the most infamous crypto hacking incidents. In 2021, an MFA bug let threat actors steal cryptocurrency from more than 6,000 users on Coinbase, a major crypto exchange. A similar attack struck Crypto.com later the same year.


Social Engineering


Hackers can also steal cryptocurrency through social engineering techniques. Phishing scams could give attackers phone numbers or the contact information they need to answer security questions to bypass MFA. Fake exchanges, crypto wallets, and investment opportunities are also increasingly common.


Social engineering can also give cybercriminals access to users’ crypto wallets. Once they have login credentials or MFA information, they can access wallet keys to empty them of their cryptocurrency. When that happens, the unchangeable nature of the blockchain makes it difficult to get those funds back.


How to Protect Crypto Investments


These attacks are becoming increasingly threatening as crypto becomes more popular. While Bitcoin has proven to be less resistant to inflation than people originally thought, it’s still growing. As more businesses and individual investors buy more cryptocurrency, crypto hacks will become more popular among cybercriminals.


Thankfully, there are solutions to this problem. Organizations and individuals should verify crypto exchanges’ security before using them. That includes checking for transparency, security certifications, and insurance in case something goes wrong.


It’s also important to store crypto investments away from exchanges and offline. Hardware wallets, small storage devices that hold cryptocurrency offline and behind password protection, help avoid risks related to exchange hacks. Be careful, though, as people have lost roughly $66.5 billion in cryptocurrency by losing these devices or forgetting their PINs.


As in any other cybersecurity endeavor, training is also crucial. Anyone with access to crypto wallets or exchanges should know how to spot and avoid phishing attempts and practice strong password management.


Cryptocurrency Isn’t Immune to Security Risks


Companies and investors should approach cryptocurrency with the same security reservations as anything else. While blockchain technology has substantial security benefits, it’s not a cure-all for hacking.


Understanding how cryptocurrency is vulnerable to hackers is the first step in protecting it. When you

24 Comments


Visa Connect
Visa Connect
a day ago

Looking to reconnect with your roots? Visa Connect's Lithuanian citizenship assistance offers complete support for those eligible by descent. From checking your eligibility to managing documents and legal submissions, we simplify the process. Trust our experienced immigration consultants to help you secure EU citizenship and its benefits efficiently and affordably.


Like

aku bisa
aku bisa
4 days ago
Like

aku bisa
aku bisa
6 days ago
Like


doctorchaos.com and drchaos.com is a blog dedicated to Cyber Counter Intelligence and Cybersecurity technologies. The posts will be a discussion of concepts and technologies that make up emerging threats and techniques related to Cyber Defense. Sometimes we get a little off-topic. Articles are gathered or written by cyber security professionals, leading OEMs, and enthusiasts from all over the world to bring an in-depth, real-world, look at Cyber Security. About this blog doctorchaos.com and drchaos.com and any affiliate website does not represent or endorse the accuracy or reliability of any information’s, content or advertisements contained on, distributed through, or linked, downloaded or accessed from any of the services contained on this website, nor the quality of any products, information’s or any other material displayed, purchased, or obtained by you as a result of an advertisement or any other information’s or offer in or in connection with the services herein. Everything on this blog is based on personal opinion and should be interoperated as such. Contact Info If you would like to contact this blog, you may do so by emailing ALAKHANI(AT)YMAIL(DOT)COM  

SOCIALS 

SUBSCRIBE 

Keeping you informed | Latest News

© 2018 Dr. Chaos 

bottom of page