New York DA Brings First-Ever Charges for Attack on Crypto Exchange’s Smart Contract

2023-7-11 22:57

As regulators and law enforcement worldwide vie to show how tough they are on cryptocurrency fraud and scams, Damian Williams, District Attorney for the Southern District of New York (SDNY), on Tuesday announced a major bust.

In a clip posted on Twitter, Williams stated that his office had racked up a law-enforcement first. Namely, the first-ever charges against the bad actor behind an attack on a smart contract on a decentralized cryptocurrency exchange. The SDNY’s indictment does not name the exchange, saying only that it launched overseas and runs on the Solana blockchain.

The SDNY District Attorney’s Indictment

Williams said that Shakeeb Ahmed, “a senior security engineer at an international technology company,” defrauded the exchange’s users of about $9 million in cryptocurrency. Ahmed then allegedly laundered the stolen funds by swapping currencies, moving among blockchains, and hiding money in far-flung exchanges.

But none of these maneuvers were enough to evade Williams’s office and its law enforcement partners, the DA said. Williams described his office as at the forefront of nabbing bad actors who misuse new technologies to commit what are, at bottom, old types of fraud.

The SDNY indictment details not only Ahmed’s alleged misdeeds, but continuing vulnerabilities in crypto exchanges. According to the indictment, Ahmed in July 2022 was a senior security engineer at “a leading international technology company” not affiliated with the exchange that fell victim.

His background came in handy here. Ahmed allegedly drew upon his knowledge of reverse engineering smart contracts and blockchain audits to carry out the theft.

Exchanges are aware of the problem, but the rise of anti-money laundering software fails to keep pace with the sophistication of cyber thieves using untraceable currencies. Source: Statista Bilking the Exchange

The unnamed exchange is a market maker. It lets those who deposit cryptocurrency into its liquidity pools set the price ranges for trading of that money, according to the indictment.

Ahmed reputedly found a vulnerability in the exchange allowing for the insertion of bogus pricing data. On or around July 2, the indictment states, Ahmed struck. He tricked the exchange by establishing “position” accounts which he disguised as “tick” accounts purporting to present legitimate data about how much liquidity their user had provided for a given price range.

The bad actor allegedly did this to deceive the exchange’s smart contract. This complex scheme resulted in Ahmed receiving millions of dollars’ worth of fees that he had not actually earned, the indictment states.

Despite the bogus nature of the pricing data, the exchange did not spot the fraud. Ahmed withdrew the so-called earnings and proceeded to launder them, claims the indictment.

In addition, Ahmed reputedly made use of “flash loans” from an unnamed crypto lender to appear to add more liquidity, mislead the exchange further, and generate inflated fees for himself. The use of flash loans in crypto fraud is on the rise and was the subject of a recent De.Fi report.

In all, he amassed $9 million in ill-gotten funds.

Hiding the Theft

The indictment details a number of methods Ahmed allegedly used to cover his tracks. Besides engaging in token swaps, the defendant “bridged” his ill-got gains from the Solana blockchain over to Ethereum.

He also reportedly transferred some of the money into Monero, which the indictment calls “an anonymized and particularly difficult cryptocurrency to trace.”

It goes on to describe a panicked response on Ahmed’s part to his own theft. Including online searches about the reach of law enforcement in the face of such a crime. He also did research on fleeing the country.

Ahmed also reputedly gave some of the stolen funds back to the exchange. But only on the condition that it not go to the police over what had happened. Yet, of the stolen $9 million, he still kept about $1.5 million.

The post New York DA Brings First-Ever Charges for Attack on Crypto Exchange’s Smart Contract appeared first on BeInCrypto.

Similar to Notcoin - Blum - Airdrops In 2024

origin »

SmartCash (SMART) на Currencies.ru

$ 9.67E-5 (+3.20%)
Объем 24H $55
Изменеия 24h: 4.16 %, 7d: 11.51 %
Cегодня L: $9.67E-5 - H: $9.67E-5
Капитализация $136.673k Rank 2190
Цена в час новости $ 0.0032958 (-97.07%)

smart contract new attack exchange york charges

smart contract → Результатов: 126


RatingToken Discovers 12,000 Identical Smart Contracts Deployed by One Ethereum Address

The Ethereum ecosystem has attracted many developers and companies over the years. Its native smart contracts have proven to be of great value in unlocking new and interesting use cases. For some reason, there has been a rather steep surge in Ethereum smart contract production over the past few days. Some of this activity seems […]

2018-7-26 20:00


Gemstra ICO

Gemstra is building a blockchain-integrated ecosystem (ASTRA Platform) and token economy (GMS Token) to unlock social selling to the entire retail market. ASTRA is a smart contract platform. It leverages blockchain technology to put data back in the hands of sellers and enable retailers (called "Merchants" in the Gemstra ecosystem) and brands from the $24 trillion global retail economy to join social selling.

2018-7-24 22:18


Covee Network ICO

Covee is building a global, borderless and collaborative future of work where smart contract replace middlemen like corporations and team governance is self-organized and decentralized. Using the blockchain technology and advanced mechanism design, the platform insures fair reward distribution and establishes a trusted environment for remote collaboration.

2018-7-24 15:57


Фото:

When Smart Contracts Act Stupid: Is Your ICO Smart Contract Safe & Secure?

The potential inherent in smart contracts is immense. The nascent technology may be used for identity verification, secure data sharing, and for the management of tokens and raised funds in an initial coin offering/token sale – but just how clever are your smart contracts? The Ethereum network boasts more than 1500 decentralized applications (dApps), all of which make use of smart contracts to accomplish a wide variety of tasks.

2018-7-24 03:00


Block.One Releases EOSIO Version 1.1.0 Targeted at Scalability, EOS Price up Nearly 3 Percent

Enterprise blockchain, smart contract, and Dapp platform EOS has upgraded its EOSIO open-source blockchain software to version EOSIO 1. 1. 0 to achieve better scalability and performance. The new release, announced July 20, 2018, also focuses on a better usability experience for developers looking to build on the EOS platform “laying a foundation for more scalable application… The post Block.

2018-7-22 01:46