Quadriga Initiative Logo.png

QUADRIGA INITIATIVE

CRYPTO WATCHDOG & FRAUD RECOVERY PLATFORM

A COMMUNITY-BASED, NOT-FOR-PROFIT

$121 000 USD

AUGUST 2021

GLOBAL

METAMASK

DESCRIPTION OF EVENTS

"I am a little bit older and new." "I am new and older generation." "It was 10 years that I collect the money for my future and for my friend and old mother." "I have been collecting this money for 10 years for retirement."

 

"90k of HEX." "I send ETH to my Metamask wallet and by HEX, than I try to stake HEX in 365 day some HEX but nothing happens 7 days."

 

"[T]han all HEX gone." "[M]y Metamask vas hacked and it is gone." "I can see transaction from my account to some another account. I didnt do this, and I have phrases and pass[words]. That day my computer was turned off all day. I dont know what to do, what is happened."

 

"I tried to stake HEX but all is gone. I never ever [I] never gave keys or data and [I] don't know if this happened." "How can I contact Metamask or HEX? Am I currently steaking some HEX are they can take that away from me as well?"

 

"I can see the wallet but how can I send it back the last 3 transactions I didn['t] do. I am new in crypto I dont know what to do. 1 day ago I was on travel and my compute[r] wasn[']t [even] turned on. [In] my Metamask wallet you can see last 4 transactions."

 

"Hello, your post was removed because your account is less than 60 days old or you do not have the required 500 comment karma to make post submissions."

Reddit user Pixel-Track introduces themselves as someone from an older generation who is not experienced with cryptocurrency. They reported that they did not share their seed phrase or private key with anyone, however they were attempting to stake their HEX tokens and this was not successful. They report that their funds were taken without authorization. Their wallet shows a transfer of 812,058.73040511 HEX tokens (worth $120,952.02 USD at the time) on April 13th, just prior to their reported post.

 

Their Reddit post was removed due to a lack of comment karma before they could be helped in any way by the cryptocurrency community.

HOW COULD THIS HAVE BEEN PREVENTED?

While the exact method is unknown, it seems very likely that their method of storing their seed phrase was not secure. They may also have interacted with an attack website and provided this information, and forgotten the specific details.

 

Check Our Framework For Safe Secure Exchange Platforms

If you want to join me in watching metamask account get robbed by some asshole look below : CryptoCurrency (Jul 3)
If you want to join me in watching metamask account get robbed by some asshole look below : CryptoCurrency (Jul 5)
reveddit (Sep 15)
https://etherscan.io/address/0xf554ab4fa772d9967a67069de43431a8e47de479 (Sep 15)
https://etherscan.io/tx/0x20642e96d56abe1eac3ecd448f23bb9a5192570a57cfde63a24190dea79f0d2b (Sep 15)
https://etherscan.io/tokenapprovalchecker?search=0xf554ab4fa772d9967a67069de43431a8e47de479 (Sep 15)

Sources And Further Reading

More case studies

Dao Maker
Exploit

Ref Finance
Logic Error

 For questions or enquiries, email info@quadrigainitiative.com.

Get Social

  • email
  • reddit
  • telegram
  • Twitter

© 2021 Quadriga Initiative. Your use of this site/service accepts the Terms of Use and Privacy Policy. This site is not associated with Ernst & Young, Miller Thompson, or the Official Committee of Affected Users. Hosted in Canada by HosterBox.