After months of delay, Huobi has finally resolved a data breach that saw the data of 4,960 users exposed, according to a report from the block. However, the incident raises questions about the company’s response and the potential consequences if the breach had been exploited.
In a shocking turn of events last year, cryptocurrency exchange Huobi recently suffered a data breach that sent shockwaves through the crypto community.
The breach, which occurred in June 2021, exposed user assets to potential theft and exposed critical information about the exchange’s technical infrastructure.
Hacker revelation shakes foundations of Huobi’s security
The breach came to light when Aaron Phillips, a hacker and citizen journalist, came across a file containing sensitive AWS credentials.
This release inadvertently granted access to Huobi’s cloud storage, giving would-be attackers the ability to manipulate the exchange’s domains, including its website and other platforms.
Phillips highlighted the seriousness of the breach, saying it could have facilitated the biggest crypto theft in history. The implications were dire, putting every user who logged into a Huobi service in the past two years at risk of losing their accounts and assets.
Exposing whales and over-the-counter trading, breach highlights lingering vulnerabilities
Beyond compromising user accounts and assets, the breach exposed a database of cryptocurrency whales — individuals holding large holdings — and uncovered detailed information about over-the-counter transactions ( OTC) performed on Huobi since 2017.
With access to user account balances, transaction details, and IP addresses, potential attackers could have exploited this valuable data to their advantage.
The breach also exposed vulnerabilities in Huobi’s Content Delivery Networks (CDNs), leaving the entire user base exposed to injection of malicious scripts.
HT price trending at $.273 | Source: HTUSD on TradingView.com
Huobi response and resolutions
After discovering the breach, Huobi reportedly took immediate action to rectify the situation. The compromised account was quickly deleted and the cloud storage was secured to prevent unauthorized access.
The exchange reassured users that the breach only affected a limited number of individuals, specifically 4,960 users, and that no sensitive information was exposed, neither user accounts or compromised assets.
“The type of information leaked does not involve sensitive information and does not affect user accounts or security of funds,” Huobi told The Block. “The incident occurred on June 22, 2021, due to improper personnel operations related to the S3 bucket in the test environment of Huobi’s Japanese AWS site. Relevant user information was completely isolated on October 8, 2022 . »
However, Huobi’s late response raised concerns as the leaked data remained online for an extended period despite being reported to the exchange in June 2022.
Lessons Learned and the Broader Crypto Exchange Landscape
The Huobi data breach is a stark reminder of the inherent risks associated with cryptocurrency exchanges, which handle massive amounts of customer data that are susceptible to hacking attempts.
This incident follows similar breaches affecting other exchanges, including Coinsquare and Gemini, which exposed user information and highlighted the need for robust security measures.
As users entrust their valuable assets to exchanges, it becomes paramount for platforms to prioritize cybersecurity, implement effective response protocols, and continuously improve their defenses to protect users from potential breaches. .
Featured image from Caixin Global, chart from TradingView.com