"A Truly Difficult Time": Algorand Foundation Releases Hack Statement
Algordand Foundation has responded to the slew of hacks over the past few weeks.
In recent weeks, MyAlgo and Algodex were both hacked. MyAlgo urged users to withdraw their assets following a targeted attack that siphoned $9.2 million.
"We strongly advise all users to withdraw any funds from Mnemonic wallets that were stored in MyAlgo. As we still don't know the root cause of recent hacks, we encourage everyone to take precautionary measures to protect their assets. Thank you for your understanding," MyAlgo tweeted on 27 February, stating the attacks occurred one week prior.
IMPORTANT: ⚠️We strongly advise all users to withdraw any funds from Mnemonic wallets that were stored in MyAlgo. As we still don't know the root cause of recent hacks, we encourage everyone to take precautionary measures to protect their assets. Thank you for your understanding.
— MyAlgo (@myalgo_) February 27, 2023
Algodex revealed that a company wallet was infiltrated on 5 March. "Early on March 5, 2023, one of our company wallets was infiltrated by a malicious actor. This attack appears to be similar to what is currently happening in the #Algorand ecosystem," it tweeted.
Everyone,
— Algodex (@AlgodexOfficial) March 6, 2023
Early on March 5, 2023, one of our company wallets was infiltrated by a malicious actor. This attack appears to be similar to what is currently happening in the #Algorand ecosystem.
A thread 👇
Inaction
Crypto Twitter figurehead ZachXBT took aim at Algorand for failing to acknowledge the scam.
"How about you clowns actually acknowledge the on-going attack stealing millions from community members and assist them," he tweeted in response to Algorand Foundation's new CFO announcement.
How about you clowns actually acknowledge the on-going attack stealing millions from community members and assist them. https://t.co/yPrCS9reRH
— ZachXBT (@zachxbt) March 6, 2023
"Why is it just people from the community and myself sharing the attackers addresses with exchanges meanwhile just silence from your embarrassment of an org," ZachZBT questioned.
Why is it just people from the community and myself sharing the attackers addresses with exchanges meanwhile just silence from your embarrassment of an org. https://t.co/6UmaMusQvP
— ZachXBT (@zachxbt) March 6, 2023
The Twitter sleuth believes the $9.2 million hack comprised of 19.5 million ALGO and 3.5 million USDC between 19 and 21 February. He also believes that wallet drains are continuing as of 7 March.
Algorand Foundation's response
On 6 March, Algorand Foundation finally released a statement on Twitter about the attacks.
"This has been a truly difficult time for the Algorand community. The security breach has impacted a number of users of the MyAlgo Wallet, a third-party wallet by Rand Labs," the not-for-profit, community organisation tweeted.
Read more: Hong Kong Crypto Scams Net HK$1.7B; Binance Launches Fraud Campaign
Algorand further revealed that it is bringing on blockchain security firm Halborn to "investigate and combat this on behalf of those impacted" as well as Chainalysis "to help trace compromised wallet transfers and freeze funds."
The foundation also advised MyAlgo Wallet asset holders to "immediately withdraw funds," declaring that MyAlgo is a third-party wallet provider and is not directly associated with the Algorand Foundation.
🧵1/
— Algorand Foundation (@AlgoFoundation) March 7, 2023
This has been a truly difficult time for the Algorand community. The security breach has impacted a number of users of the MyAlgo Wallet, a third-party wallet by Rand Labs.
The world of Web3 can be quite a whirlwind. Here at Blockhead, we understand how busy crypto is keeping you, so we kindly send out three newsletters each week: BlockBeat for a wrap-up of the week’s news; Blockhead Brief for weekend happenings as well as what to look forward to in the week ahead; Business Bulletin for the most important business and economic developments in the industry. To avoid FOMO and access member-only features, click here to subscribe.