FTX Attacker Moving Funds to Bitcoin (BTC) Mixer: Statistics

Please fol­low and like us:
Pin Share


article image
Vladislav Sopov

360 Bit­coins (BTC) or over $6 mil­lion in equiv­a­lent being laun­dered through ChipMixer

Con­tents

Rep­utable anony­mous cryp­tocur­ren­cy ana­lyst ZachXBT has tracked the path of Bit­coins (BTC) stolen from the now-defunct exchange FTX after its col­lapse. What is spe­cial about the mix­ing ser­vice used by the FTX hacker?

Bitcoins (BTC) from FTX are on run, ZachXBT says

In a recent tweet, ana­lyst ZachXBT men­tioned that the first batch of Bit­coins — 360 BTC — from the FTX hack are moved for laun­der­ing on Chip­Mix­er, a main­stream Bit­coin (BTC) blender.

Such ser­vices are used to obfus­cate the own­er­ship of cryp­tocur­ren­cies. Typ­i­cal­ly, hack­ers lever­age them to laun­der stolen funds and make it impos­si­ble for AML ser­vices to track them.

A large por­tion of the stolen Bit­coins (BTC) were moved through Ren Pro­to­col (REN). In a report on the Chainabuse plat­form, ZachXBT shared the details of dozens of address­es on Bit­coin (BTC), Ethereum (ETH), Solana (SOL) and Poly­gon Net­work (MATIC) that are used by the FTX hacker.

As cov­ered by U.Today pre­vi­ous­ly, hack­ers drained $477 mil­lion in equiv­a­lent from FTX and its U.S. arm short­ly after the bank­rupt­cy of the exchange.

In a “peel chain” trans­ac­tion pat­tern, Ethereums (ETH) from FTX are dis­trib­uted between var­i­ous address­es, Cer­tiK cyber­se­cu­ri­ty ana­lysts noticed.

U.S. government undercover operation?

Anoth­er promi­nent ana­lyst @FatManTerra shared his the­o­ry about the Chip­Mix­er ser­vice. He claims that it might be run by U.S. gov­ern­men­tal agen­cies to crack Bit­coin (BTC) pri­va­cy and deanonymize transfers.

The ana­lyst high­light­ed that despite the crack­down on Tor­na­do Cash, Chip­Mix­er still oper­ates open­ly. Run­ning such a cen­tral­ized ser­vice is high­ly ille­gal. Mean­while, its own­ers, who­ev­er they might be, have a huge amount of infor­ma­tion about the transactions.

By print­ing time, one of the most pop­u­lar Chip­Mix­er domains is labeled by Meta­Mask Phish­ing Detec­tion as a web­site from Cryp­toScamDB. The ser­vice restricts access to Chip­Mix­er as it can com­pro­mise vis­i­tors’ security.



Source link

Please fol­low and like us:
Pin Share

Leave a Reply

Your email address will not be published. Required fields are marked *