This is addressed to the hacker who stole 10376446 ONE from my former delegator with the ONE address:
one1ys4s9r9yzly6xeyzkln867463pan6mf8h5720g
He is offering a 2M bounty and is willing to drop all charges against the hacker if he/she will return 8376446 ONE to his new wallet. Please feel free to keep the remaining 2M ONE and do what you want with it.
To prove ownership of the previous wallet, I have sent 0.01 ONE to the hacked address and the former delegator of mine has send 0.005 ONE from the hacked address to his new address:
one1qjqnwcj9pcfm4wghhel5sfg9vzddag97yuxw0f
Speechless… I hope the hacker(s) find some soul within its heart and send back the funds.
To protect other community members for such an event to happen, is it possible to share some details about how it happen so we can all take security measurements?
If you wouldn’t mind, could you DM me on Discord (I’m cowgp) I have a few questions about bounties and charges I’m hoping maybe you could answer.
Recently there are many incidents related to funds loss related to non-custodial web wallets (Metamask, Coin98, so Harmony/Harmony ONE web extension isn’t the only target).
I happened to read an article written by a specialist on Facebook, he described the process of these hacks as follow: your host machine is infected with malware, this malware will search for data, logs files of wallet extension, & LoginData of your browser, upload these file to the hacker’s server, the hacker then use his tool to mass bruteforce the victim’s wallets. Here’s the original post in Vietnamese on facebook https://www.facebook.com/4n6ist/posts/3476768829131150