Bitfinex’s Chief Technology Officer, Paolo Ardoino, recently refuted claims made by the hacking group Fsociety regarding a data breach of the cryptocurrency exchange’s database. Ardoino dismissed these claims as “fake” and clarified that there was no ransom request made through official channels like bug bounty programs or customer support. The misinformation surrounding the alleged data breach began circulating on social media and was picked up by prominent sources before being corrected by the original source, Shinoji Research.
Ardoino further explained that Bitfinex does not store plaintext passwords or 2FA secrets in clear text, diminishing the credibility of the alleged breach. Out of the 22,500 records leaked by Fsociety, only 5,000 matched with Bitfinex users. The hackers likely gathered data from other crypto-related breaches where users may have used the same login credentials across multiple platforms. Ardoino emphasized that after a thorough internal review, Bitfinex concluded that the claim of a data breach was indeed fake.
Fsociety, inspired by the fictional hacking group from the TV show “Mr. Robot,” claimed to have breached several entities, including Bitfinex, but no victims acknowledged experiencing a data breach or engaging in ransom payment. Ardoino questioned the legitimacy of Fsociety’s assertions and shared insights from a security researcher suggesting that the group may have fabricated the claim to promote its ransomware tools. Despite these allegations, Bitfinex continues to investigate the situation and assures users that no breach has been detected, and all user funds remain secure.
Bitfinex has a history of being targeted by hackers, notably in a 2016 incident where over 95,000 Bitcoins were compromised. Two individuals involved in the hack pleaded guilty to money laundering charges and forfeited the stolen bitcoin to authorities. Despite this past incident, Bitfinex remains committed to ensuring the security of user funds and diligently investigates any potential threats to their platform.
In conclusion, the recent claims of a data breach at Bitfinex made by the hacking group Fsociety have been dismissed as fake by the exchange’s CTO, Paolo Ardoino. The misinformation surrounding the alleged breach was quickly corrected, and Ardoino reassured users that no breach had occurred and user funds were secure. While Bitfinex has faced security issues in the past, they remain proactive in addressing potential threats and maintaining the integrity of their platform. It is essential for users of cryptocurrency exchanges to remain vigilant and follow best practices to protect their assets from potential security breaches.