{"id":557477,"date":"2023-02-28T07:54:29","date_gmt":"2023-02-28T04:54:29","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/myalgo-users-urged-to-withdraw-as-cause-of-9-2m-hack-remains-unknown\/"},"modified":"2023-02-28T07:54:29","modified_gmt":"2023-02-28T04:54:29","slug":"myalgo-users-urged-to-withdraw-as-cause-of-9-2m-hack-remains-unknown","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/myalgo-users-urged-to-withdraw-as-cause-of-9-2m-hack-remains-unknown\/","title":{"rendered":"# MyAlgo users urged to withdraw as cause of $9.2M hack remains unknown"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a3cc5814b60e\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a3cc5814b60e\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/myalgo-users-urged-to-withdraw-as-cause-of-9-2m-hack-remains-unknown\/#%E2%80%9D_MyAlgo_users_urged_to_withdraw_as_cause_of_92M_hack_remains_unknown_%E2%80%9C\" >&#8221; MyAlgo users urged to withdraw as cause of $9.2M hack remains unknown &#8220;<\/a><\/li><\/ul><\/nav><\/div>\n<h1><span class=\"ez-toc-section\" id=\"%E2%80%9D_MyAlgo_users_urged_to_withdraw_as_cause_of_92M_hack_remains_unknown_%E2%80%9C\"><\/span>&#8221; MyAlgo users urged to withdraw as cause of $9.2M hack remains unknown &#8220;<span class=\"ez-toc-section-end\"><\/span><\/h1>\n<p><img decoding=\"async\" src=\"https:\/\/images.cointelegraph.com\/images\/840_aHR0cHM6Ly9zMy5jb2ludGVsZWdyYXBoLmNvbS91cGxvYWRzLzIwMjMtMDIvODIxNDgyNmUtZGY2Yi00ZWRmLWI0MTYtZGQ5Y2M0ZmU5NjQyLmpwZw==.jpg\" \/><\/p>\n<div class=\"post-content\" data-v-48054ca8>A wallet provider for the Algorand (ALGO) network, MyAlgo, has warned its users to withdraw funds from any wallets created with a seed phrase amid an ongoing exploit that has seen an estimated $9.2 million worth of funds stolen.<\/p>\n<p>MyAlgo tweeted the advice on Feb. 27 adding it still doesn\u2019t know the cause of the recent wallet hacks and encouraged \u201ceveryone to take precautionary measures to protect their assets.\u201d<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">IMPORTANT: \u26a0\ufe0fWe strongly advise all users to withdraw any funds from Mnemonic wallets that were stored in MyAlgo. As we still don&#8217;t know the root cause of recent hacks, we encourage everyone to take precautionary measures to protect their assets. Thank you for your understanding.<\/p>\n<p>\u2014 MyAlgo (@myalgo_) <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/myalgo_\/status\/1630185695791706120?ref_src=twsrc%5Etfw\">February 27, 2023<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>Earlier on Feb. 27 the team <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/myalgo_\/status\/1629849998861955073\">tweeted<\/a> a warning of a \u201ctargeted attack [&#8230;] carried out against a group of high-profile MyAlgo accounts\u201d which has seemingly been conducted over the past week.<\/p>\n<p>The self-titled \u201con-chain sleuth,\u201d ZachXBT, outlined in a Feb. 27 tweet that it\u2019s suspected the exploit has pilfered over $9.2 million and crypto exchange ChangeNOW was able to freeze around $1.5 million worth of funds.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">I haven\u2019t seen many posts about this on CT yet but it\u2019s suspected over $9.2m (19.5M ALGO, 3.5m USDC, etc) has been stolen on Algorand as a result of this attack from Feb 19th to 21st.<\/p>\n<p>ChangeNow shared they were able to freeze $1.5m. <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/t.co\/BPCXTUD57n\">https:\/\/t.co\/BPCXTUD57n<\/a> <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/t.co\/A3t7Ss0e83\">pic.twitter.com\/A3t7Ss0e83<\/a><\/p>\n<p>\u2014 ZachXBT (@zachxbt) <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/zachxbt\/status\/1630375691886686208?ref_src=twsrc%5Etfw\">February 28, 2023<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Particularly susceptible to the exploit were users who had mnemonic wallets with the key stored in an internet browser according to MyAlgo. A mnemonic wallet typically uses between 12 and 24 words to generate a private key.<\/p>\n<p>John Wood, chief <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/technology\/\" data-internallinksmanager029f6b8e52c=\"4\" title=\"Technology\" target=\"_blank\" rel=\"noopener\">technology<\/a> officer at the networks governance body the Algorand Foundation, took to <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">Twitter<\/a> on Feb. 27, saying around 25 accounts were affected by the exploit.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">1\/n     Update on the exploit impacting ~25 accounts: from our investigation, this is not the result of an underlying issue with the Algorand protocol or SDK.<\/p>\n<p>\u2014 John Woods (@JohnAlanWoods) <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/JohnAlanWoods\/status\/1630301913693540355?ref_src=twsrc%5Etfw\">February 27, 2023<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>He added the exploit \u201cis not the result of an underlying issue with the Algorand protocol\u201d or its software development kit.<\/p>\n<p><strong><em>Related: <\/em><\/strong><strong><em>$700,000 drained from BNB Chain-based DeFi protocol LaunchZone<\/em><\/strong><\/p>\n<p>Algorand-focused developer collective D13.co released a <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/d13.co\/algorand-20-02-2023-thefts-preliminary-advisory-report\/\">report<\/a> on Feb. 27 that eliminated multiple possible exploit vectors such as malware or operating system vulnerabilities.<\/p>\n<p>The report determined the \u201cmost probable\u201d scenarios were that the affected users\u2019 seed phrases were compromised through socially engineered phishing attacks or MyAlgo\u2019s website was compromised that lead to the \u201ctargeted exfiltration of unencrypted private keys.\u201d<\/p>\n<p>MyAlgo stated it would continue to work with authorities and would conduct a \u201cthorough investigation to determine the root cause of the attack.\u201d<\/p>\n<p><template data-name=\"subscription_form\" data-type=\"defi_newsletter\"><\/template><\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong>\n<\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/news\/\" data-internallinksmanager029f6b8e52c=\"2\" title=\"News\" target=\"_blank\" rel=\"noopener\">News<\/a> articles, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/general\/\" target=\"_blank\" rel=\"noopener\">General category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/cointelegraph.com\/news\/myalgo-users-urged-to-withdraw-as-cause-of-9-2m-hack-remains-unknown\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8221; MyAlgo users urged to withdraw as cause of $9.2M hack remains unknown &#8220; A wallet provider for the Algorand (ALGO) network, MyAlgo, has warned its users to withdraw funds from any wallets created with a seed phrase amid an ongoing exploit that has seen an estimated $9.2 million worth of funds stolen. MyAlgo tweeted&#8230;<\/p>\n","protected":false},"author":1,"featured_media":557478,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/s3.cointelegraph.com\/uploads\/2023-02\/8214826e-df6b-4edf-b416-dd9cc4fe9642.jpg","fifu_image_alt":"","footnotes":""},"categories":[1],"tags":[75866,74894,74882,74879,70944],"class_list":["post-557477","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-general","tag-algorand","tag-blockchain","tag-hacks","tag-wallet","tag-hackers"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/557477","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=557477"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/557477\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/557478"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=557477"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=557477"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=557477"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}