Cointime

Cointime

Download App
iOS & Android

The Blockchain Bandit Is on the Move: Wallet of Prolific Crypto Thief Moves Funds for First Time in Six Years

Validated Project

After six years of hodling, the notorious “Blockchain Bandit” has woken up and begun moving some of the $90 million worth of stolen funds sitting in their wallet. Below, we’ll discuss how this prolific thief used a tactic called “Ethercombing” to steal crypto from thousands of users back in 2015 and 2016, and show you where they’ve begun to move funds in the last week.

Who is the Blockchain Bandit?

The Blockchain Bandit is an as yet unknown individual or group who emptied the wallets of over 10,000 cryptocurrency users in 2015 and 2016. They did this using a process called “Ethercombing” to identify and drain Ethereum addresses with weak private keys. 

Andy Greenberg described the process in more detail in a 2019 Wired article, but essentially, the thief’s process relied on the fact that it’s possible to determine an address’ public key if you know its private key. The Blockchain Bandit exploited this, and appears to have come up with an automated system to scan a list of weak private keys that may be in use — for instance, single-digit private keys — see if there was an address using that key, and drain the address of its funds. Using this strategy, the Blockchain Bandit amassed a fortune of over 51,000 Ether, stolen from over 10,000 individual wallets.

The Blockchain Bandit moves funds for first time in six years

For six years, the Blockchain Bandit’s wallet was almost entirely dormant, moving none of its stolen treasure trove. But that changed on January 16, 2023, when the Bandit began transacting again. Between that date and January 21, the Blockchain Bandit moved almost all of their holdings — 51,000 Ether and 470 Bitcoin worth approximately $90 million at current prices — to new addresses.

We suspect this sudden surge in activity is related to the recent jump in crypto asset prices. We’ll continue to monitor the situation and share updates where possible, but in the meantime, this is a great opportunity to consider best practices around private keys. We encourage all users to store funds using well-known, trusted personal wallets that won’t generate weak private keys, and to consider keeping large holdings in hardware wallets, especially if they don’t plan to transact frequently. 

Blockchain Crypto
Comments

All Comments

Recommended for you

  • Hassett: Confident Waller Will Assume Fed Chair Position in May

    Hassett, the Director of the National Economic Council at the White House, expects that Powell will not remain as a Federal Reserve governor. He is confident that Waller will assume the position of Fed Chair in May.

  • Becerra: It's Time to Submit the CLARITY Act for President Trump's Signature

    On April 9, U.S. Treasury Secretary Becerra stated that Congress has spent nearly five years attempting to pass a framework to ensure the future development of the financial industry. Now is the time for Senate Banking Republicans to review and submit the CLARITY Act for President Trump's signature.

  • Binance Officially Launches Prediction Market

    On April 9, Binance announced the launch of its prediction market, a new feature that allows users to participate in probability-based markets through integration with third-party platforms from the Binance app. The Binance wallet will integrate market access provided by Predict.fun, a leading on-chain prediction market provider on the BNB Smart Chain (BSC). In the Binance App, go to the [Markets] tab. Click on the [Prediction] tab (available only in supported regions). Select a category to browse available markets offering real-time probability pricing.

  • Iranian Military Spokesman: 'Prepared for Long-term War'

    According to the Iranian Students' News Agency on the 9th, the Iranian military spokesman expressed hope for reaching an agreement in the ceasefire negotiations, but stated that if the talks fail, 'we are also prepared for a long-term war.' The conditions proposed by Iran will serve as the basis for the negotiations. (Xinhua News Agency)

  • US Spot Bitcoin ETF Sees Net Outflow of $124.25 Million Yesterday

    On April 9, according to monitoring by Trader T, the US spot Bitcoin ETF experienced a net outflow of $124.25 million yesterday.

  • US Spot Ethereum ETF Sees Net Inflow of $13.84 Million Yesterday

    On April 9, according to monitoring by Trader T, the US spot Ethereum ETF saw a net inflow of $13.84 million yesterday.

  • BTC Falls Below $71,000

    Market data shows that BTC has fallen below $71,000, currently priced at $70,997.18, with a 24-hour decline of 0.52%. The market is experiencing significant volatility, so please ensure proper risk management.

  • BTC Drops Below $71,000

    Market data shows that BTC has fallen below $71,000, currently priced at $70,989.94, with a 24-hour increase of 4.15%. The market is experiencing significant volatility, so please ensure proper risk management.

  • Ethereum Foundation Plans to Sell 5,000 ETH to Fund R&D, Grants, and Donations

    On April 8, the Ethereum Foundation announced on the X platform that it will exchange 5,000 ETH for stablecoins today using CoWSwap's TWAP feature, as part of its ongoing efforts to fund research and development, grants, and donations.

  • Iran to Charge Fees for Vessels Transiting the Strait of Hormuz, Payments Acceptable in Digital Currency

    According to market news, Hamid Hosseini, spokesperson for the Iranian Oil, Gas and Petrochemical Exporters Union, stated on Wednesday that during a two-week ceasefire, Iran will require vessels to pay a toll to transit the Strait of Hormuz. All goods will be allowed to pass, but the clearance procedures for each vessel will take time. Each tanker must first send the details of its cargo via email to be informed of the fees, which can be paid using digital currencies, including Bitcoin.

Daily Must-Read

Popular Activities

RaveDAO at Terra Solis by Tomorrowland: A Female-Led Techno Night Where Web3 Culture Converges

RaveDAO at Terra Solis by Tomorrowland: A Female-Led Techno Night Where Web3 Culture Converges

April 30 - April 30
Dubai

Popular Tags

Cointime
News
Contents
RSS
Company