CoinsPaid 遭受第二次大规模网络攻击，加密货币损失 750 万美元

Web3 安全公司 Cyvers 报告称，CoinsPaid 在六个月内再次面临安全攻击，近 750 万美元的加密资产被盗。此次攻击涉及 Tether、Ether、USD Coin、CoinsPaid 代币和 BNB 等未经授权的交易，导致数百万 CPD 代币兑换成 ETH 并转账至外部账户。爱沙尼亚加密支付提供商 CoinsPaid 此前曾于 2023 年 7 月经历过一次重大攻击，据信 Lazarus Group 利用社会工程技术窃取了超过 370 亿美元。

CoinsPaid Suffers Second Major Security Attack, Losing Nearly $7.5 Million in Digital Assets

CoinsPaid遭受第二次重大安全攻击，损失近750万美元的数字资产

Jakarta, Indonesia - Leading Web3 security firm Cyvers has uncovered a second security breach at crypto payment gateway CoinsPaid, resulting in the theft of nearly $7.5 million worth of digital assets. Cyvers' advanced artificial intelligence (AI) system detected a series of unauthorized transactions on January 6, alerting the company to the compromise.

印度尼西亚雅加达 - 领先的 Web3 安全公司 Cyvers 在加密支付网关 CoinsPaid 发现了第二个安全漏洞，导致价值近 750 万美元的数字资产被盗。 Cyvers 的先进人工智能 (AI) 系统于 1 月 6 日检测到一系列未经授权的交易，并向该公司发出了入侵警报。

Unauthorized Withdrawals and Asset Conversions

未经授权的提款和资产转换

Cyvers' AI identified several irregularities involving the withdrawal of $6.1 million in digital assets, including Tether (USDT), Ether (ETH), USD Coin (USDC), and CoinsPaid's native token (CPD). The attackers swiftly exchanged approximately 97 million CPD tokens, valued at around $368,000, into ETH. The funds were then transferred to external accounts and various cryptocurrency exchanges, including MEXC, WhiteBit, and ChangeNOW. At the time of writing, the CPD token is trading at $0.0006, indicating a significant 39.5% decline in value over the past 24 hours.

Cyvers 的 AI 发现了数起涉及提取 610 万美元数字资产的违规行为，其中包括 Tether (USDT)、Ether (ETH)、USD Coin (USDC) 和 CoinsPaid 的原生代币 (CPD)。攻击者迅速将约 9700 万个 CPD 代币（价值约 368,000 美元）兑换成 ETH。然后资金被转移到外部账户和各种加密货币交易所，包括 MEXC、WhiteBit 和 ChangeNOW。截至撰写本文时，CPD 代币的交易价格为 0.0006 美元，表明过去 24 小时内价值大幅下跌 39.5%。

Further Unauthorized Transactions and Total Losses

进一步的未经授权的交易和总损失

Upon further investigation, Cyvers identified additional unauthorized transactions involving Binance Coin (BNB) worth more than $1 million, bringing the total estimated loss to close to $7.5 million.

经过进一步调查，Cyvers 发现了涉及币安币 (BNB) 的其他未经授权的交易，价值超过 100 万美元，估计损失总额接近 750 万美元。

Background: CoinsPaid's Previous Attack and Lazarus Suspicion

背景：CoinsPaid 之前的攻击和 Lazarus 的怀疑

CoinsPaid, an Estonian-based payment provider for digital assets, previously experienced a severe security attack in July 2023, resulting in the theft of over $37 billion. The company alleged that hackers employed a deceptive social engineering technique, exploiting fake job interviews to trick an employee into downloading malicious code. The compromised access allowed the attackers to steal sensitive information and gain entry into CoinsPaid's infrastructure.

总部位于爱沙尼亚的数字资产支付提供商 CoinsPaid 此前曾于 2023 年 7 月遭遇严重安全攻击，导致超过 370 亿美元被盗。该公司声称，黑客采用了欺骗性的社会工程技术，利用虚假的工作面试来诱骗员工下载恶意代码。受到破坏的访问使攻击者能够窃取敏感信息并进入 CoinsPaid 的基础设施。

In a post-mortem report, CoinsPaid attributed the attack to the North Korean state-backed Lazarus Group, notorious for its sophisticated hacking techniques. The report indicated that the group had attempted to infiltrate CoinsPaid's platform since March 2023, but after repeated failures, they shifted to "very sophisticated and powerful" social engineering methods, targeting employees rather than the company's technical systems.

CoinsPaid 在一份事后报告中将这次攻击归咎于朝鲜国家支持的 Lazarus Group，该组织因其复杂的黑客技术而臭名昭著。报告指出，该组织自 2023 年 3 月以来一直试图渗透 CoinsPaid 平台，但在多次失败后，他们转向“非常复杂且强大”的社会工程方法，针对员工而不是公司的技术系统。

The Lazarus Group has been implicated in a series of high-profile crypto hacks throughout 2023. Blockchain intelligence firm TRM Labs estimates that the group stole at least $600 million in cryptocurrency last year.

Lazarus 集团在 2023 年遭遇了一系列备受瞩目的加密货币黑客攻击。区块链情报公司 TRM Labs 估计，该集团去年窃取了至少 6 亿美元的加密货币。

CoinsPaid Remains Silent on Latest Attack

CoinsPaid 对最新攻击保持沉默

Despite the significant financial losses and the second attack within six months, CoinsPaid has refrained from issuing an official statement regarding the latest compromise. The company's silence has raised concerns among customers and industry experts alike, who are seeking transparency and reassurance about the security of their funds.

尽管造成了巨大的经济损失，并且在六个月内发生了第二次攻击，CoinsPaid 仍没有就最新的妥协发表官方声明。该公司的沉默引起了客户和行业专家的担忧，他们正在寻求资金安全的透明度和保证。

Implications for the Crypto Industry

对加密行业的影响

The repeated attacks on CoinsPaid highlight the urgent need for robust security measures within the cryptocurrency industry. As digital assets continue to gain widespread adoption, it is essential for payment gateways and exchanges to invest in advanced security protocols, employ rigorous employee training programs, and implement comprehensive risk management strategies.

对 CoinsPaid 的多次攻击凸显了加密货币行业内迫切需要强有力的安全措施。随着数字资产不断得到广泛采用，支付网关和交易所必须投资先进的安全协议、采用严格的员工培训计划并实施全面的风险管理策略。

The ongoing threat posed by sophisticated hacking groups like Lazarus underscores the importance of collaboration between law enforcement agencies, security researchers, and cryptocurrency companies to combat cybercrime and protect user funds.

Lazarus 等复杂的黑客组织所构成的持续威胁凸显了执法机构、安全研究人员和加密货币公司之间合作打击网络犯罪和保护用户资金的重要性。