Xeggex Exchange Collapses After Suspicious Withdrawals: Difference between revisions
(Created page with "{{Imported Case Study With About|source=https://www.quadrigainitiative.com/casestudy/xeggexexchangecollapses.php}} {{Unattributed Sources}} thumb|Xeggex Logo/Homepage<ref name="rektnews-18286" /><ref name="jamestyleetweet-18287" /><ref name="smollspintwitter-18288" /><ref name="xeggextweet-18289" /><ref name="xeggex-18290" /> == About Xeggex == Xeggex claims to offer a comprehensive suite of services tailored to cryptocurrency traders and investo...") |
m (Azoundria moved page Xeggex Exchange Collapses Amid MongoDB Claim to Xeggex Exchange Collapses After Suspicious Withdrawals) |
||
| (2 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
{{ | {{Case Study Under Construction}}[[File:Xeggexcom.jpg|thumb|Xeggex Logo/Homepage]]Summary. | ||
[[File:Xeggexcom.jpg|thumb|Xeggex Logo/Homepage]] | |||
== About Xeggex == | == About Xeggex == | ||
Xeggex | Xeggex built its reputation as a haven for low-cap tokens and regulatory avoidance<ref name="rektnews-18286" />. Xeggex claimed to offer a comprehensive suite of services tailored to cryptocurrency traders and investors<ref name="xeggex-18290" />. The platform provided access to Spot Markets, where users can buy and sell over 450 different assets across more than 1,100 markets<ref name="xeggex-18290" />. The interface was designed for simplicity, making it accessible for both novice and experienced traders<ref name="xeggex-18290" />. This allowed users to engage in trading activities with ease and efficiency<ref name="xeggex-18290" />. Additionally, Xeggex offered Liquidity Pools, which enable users to provide liquidity and earn rewards from transaction fees and other bonuses generated by the platform's activities<ref name="xeggex-18290" />. | ||
The platform also | The platform also facilitated Peer-to-Peer (P2P) Trading, allowing users to trade cryptocurrencies directly with one another globally, with a very low fee of just 0.2%<ref name="xeggex-18290" />. This provided greater flexibility for traders who prefer dealing with peers rather than through centralized exchanges<ref name="xeggex-18290" />. For users interested in digital art and collectibles, Xeggex hosted an NFT Marketplace, where individuals can discover, buy, and sell NFTs, expanding their trading opportunities beyond traditional cryptocurrencies<ref name="xeggex-18290" />. Furthermore, the platform included Faucets, enabling users to claim free cryptocurrency or create faucets to promote certain assets<ref name="xeggex-18290" />. | ||
A key feature that Xeggex | A key feature that Xeggex promoted is its native XPE Token, which offers various benefits<ref name="xeggex-18290" />. By holding XPE tokens in their accounts, users could reduce their trading and withdrawal fees, pay for liquidity pool participation, and promote their assets on the platform<ref name="xeggex-18290" />. The use of XPE can save users up to 25% on fees, making it an attractive incentive for active traders<ref name="xeggex-18290" />. This native token is central to Xeggex's ecosystem and aimed to enhance the overall user experience by offering financial savings and additional utility across the platform<ref name="xeggex-18290" />. | ||
To cater to the needs of on-the-go traders, Xeggex also offers a mobile app available for both Android and iOS devices, allowing users to trade conveniently from their smartphones. The platform's emphasis on ultra-low fees | To cater to the needs of on-the-go traders, Xeggex also offers a mobile app available for both Android and iOS devices, allowing users to trade conveniently from their smartphones<ref name="xeggex-18290" />. The platform's emphasis on ultra-low fees was a significant selling point, especially for those who choose to use XPE tokens for fee payments<ref name="xeggex-18290" />. Lastly, Xeggex provided a variety of market pairs, from popular cryptocurrencies like Bitcoin and Ethereum to lesser-known altcoins, ensuring a diverse range of trading opportunities for all types of users<ref name="xeggex-18290" />. | ||
== The Reality == | == The Reality == | ||
It is alleged that the Xeggex platform was actually operated by Paul Vernon. | It is alleged that the Xeggex platform was actually operated by Paul Vernon<ref name="rektnews-18286" />. | ||
The Xeggex platform reportedly managed large financial transactions using MongoDB<ref name="smollspintwitter-18288" />. | |||
Suspicious transfers were detected before the hack announcement, and blockchain analysis showed millions in altcoins locked in wallets, with some remaining untouched for weeks<ref name="rektnews-18286" />. | |||
== What Happened == | == What Happened == | ||
Starting on February 3rd, 2025, users no longer had access to their funds. | Starting on February 3rd, 2025, users no longer had access to their funds. The platform claimed technical difficulties after its CEO's account was allegedly "hacked" and the database corrupted<ref name="rektnews-18286" />. | ||
{| class="wikitable" | {| class="wikitable" | ||
|+Key Event Timeline - Xeggex Exchange Collapses | |+Key Event Timeline - Xeggex Exchange Collapses | ||
| Line 23: | Line 24: | ||
!Event | !Event | ||
!Description | !Description | ||
|- | |||
|January 11th, 2025 9:12:00 PM MST | |||
|Xeggex Ignores 2FA Vulnerability | |||
|According to Twitter/X user Foquismo_, they reported an issue with the 2FA system in Xeggex at this time<ref name=":0">[https://twitter.com/Foquismo_/status/1888726465065127987 Foquismo - "On January 11, 2025, I reported to #Xeggex that I had discovered a sequence of actions that bypasses the two-factor authentication (2FA) for withdrawals. Upon reporting this issue, I was informed that such an event was impossible and that I must have made an error, asserting that Xeggex was 100% secure. In the future, if this happens again, I will withdraw all funds before reporting the issue." - Twitter/X] (Accessed Mar 6, 2025)</ref>. The Xeggex team reportedly "informed[ them] that such an event was impossible and that [they] must have made an error, asserting that Xeggex was 100% secure"<ref name=":0">[https://twitter.com/Foquismo_/status/1888726465065127987 Foquismo - "On January 11, 2025, I reported to #Xeggex that I had discovered a sequence of actions that bypasses the two-factor authentication (2FA) for withdrawals. Upon reporting this issue, I was informed that such an event was impossible and that I must have made an error, asserting that Xeggex was 100% secure. In the future, if this happens again, I will withdraw all funds before reporting the issue." - Twitter/X] (Accessed Mar 6, 2025)</ref>. | |||
|- | |- | ||
|February 3rd, 2025 2:34:00 AM MST | |February 3rd, 2025 2:34:00 AM MST | ||
|Xeggex Announces CEO Hacked | |Xeggex Announces CEO Hacked | ||
|Xeggex posts on Twitter/X to announce that their CEO had their Telegram account hacked. | |Xeggex posts on Twitter/X to announce that their CEO had their Telegram account hacked<ref name="xeggextweet-18289" />. | ||
|- | |- | ||
|February 6th, 2025 1:18:00 PM MST | |February 6th, 2025 1:18:00 PM MST | ||
|James Tylee Telegram Muted | |James Tylee Telegram Muted | ||
|James Tylee reports that he is muted from the official Xeggex Telegram group chat, shortly after providing commands which can assist with recovering the MongoDB database. | |James Tylee reports that he is muted from the official Xeggex Telegram group chat, shortly after providing commands which can assist with recovering the MongoDB database<ref name="jamestyleetweet-18287" />. | ||
|- | |- | ||
|February 6th, 2025 3:04:00 PM MST | |February 6th, 2025 3:04:00 PM MST | ||
|Using Percona Database | |Using Percona Database | ||
|A screenshot of Telegram chat reports that the exchange team is claiming that the expert they were meeting with is unable to help them because they are using Percona database rather than MongoDB. | |A screenshot of Telegram chat reports that the exchange team is claiming that the expert they were meeting with is unable to help them because they are using Percona database rather than MongoDB<ref name="smollspintwitter-18288" />. | ||
|- | |||
|March 5th, 2025 9:42:00 AM MST | |||
|Rekt News Article Published | |||
|Rekt shares an article summarizing the Xeggex situation, reporting the sudden collapse of the altcoin exchange amid claims of a "hack" and database corruption<ref name="rektnews-18286" /><ref>[https://x.com/RektHQ/status/1897326964941447326 Rekt News - "Suspicious transfers left @xeggex hours before their CEO’s alleged “hack,” drawing comparisons to past exchange collapses. Promissory tokens replace real assets and users are stranded in crypto’s latest ghost town." - Twitter] (Accessed Mar 6, 2025)</ref>. The timing of the incident raised suspicions, as millions in funds appeared to have been moved before the alleged hack, and wallet activity continued despite the exchange's claims of technical difficulties<ref name="rektnews-18286" />. Users were eventually given "promissory tokens" in place of real assets, and investigations into the collapse revealed similarities to past exchange failures, particularly Cryptsy and Altilly<ref name="rektnews-18286" />. The article suggests a pattern of exit scams orchestrated by operators who drain assets, fabricate technical issues, and delay recovery, leaving users with empty promises<ref name="rektnews-18286" />. | |||
|} | |} | ||
== Technical Details == | == Technical Details == | ||
The situation mirrors previous exchange collapses, such as Cryptsy and Altilly, with shared patterns of "hacks," database failures, and indefinite recovery promises<ref name="rektnews-18286" />. Community investigations suggest potential links to Paul Vernon, the figure behind Cryptsy's collapse<ref name="rektnews-18286" />. | |||
== Total Amount Lost == | == Total Amount Lost == | ||
| Line 46: | Line 55: | ||
== Immediate Reactions == | == Immediate Reactions == | ||
Xeggex posted an initial update on their Twitter/X account shortly after disabling withdrawals<ref name="xeggextweet-18289" />:<blockquote>Dear users, in this hard time our CEO was hacked and he lost tg account and xeggex community group beside that we still don't know details about it. Also what is important in this moment is that we succeed to lock down wallets so funds are safe. Problem with logins is still there due that we disconnected database from the network and we will go in the background to examine everything.. Next news will be more detailed after we get wider picture.</blockquote>Users criticized the platform's use of MongoDB<ref>[https://twitter.com/theretromike/status/1888785004894851539 Retro Mike Tech - "I also question why they are using Mongo, or any NoSql / document db for that matter. IMO, With something as critical as financial transactions and a significant user base, they should be using a real relational db and have a proper DR and Business Continuity plans, along with periodic testing of those processes so they are prepared to handle this type of situation." - Twitter/X] (Accessed Mar 6, 2025)</ref>.<blockquote>I also question why they are using Mongo, or any NoSql / document db for that matter. IMO, With something as critical as financial transactions and a significant user base, they should be using a real relational db and have a proper DR and Business Continuity plans, along with periodic testing of those processes so they are prepared to handle this type of situation.</blockquote>Despite claiming technical issues, the exchange's wallets continued to show activity, particularly with Pepe transactions<ref name="rektnews-18286" />. | |||
== Ultimate Outcome == | == Ultimate Outcome == | ||
What was the end result? Was any investigation done? Were any individuals prosecuted? Was there a lawsuit? Was any tracing done? | What was the end result? Was any investigation done? Were any individuals prosecuted? Was there a lawsuit? Was any tracing done? | ||
=== Reported Attempts To Resolve Database Issue === | |||
Geraldo from the Xeggex team reported that they had met with a team to discuss their database at 4 AM<ref name="smollspintwitter-18288" />:<blockquote>"We had the call at 4am EST to get synced up with them on the situation. They were under the impression we used MongoDB Community, but we use Percona. Sounds like it might not be an issue, but it is/was. So they need a different set of people that would assist with that particula[r] distributeion. Aside from that, we are looking at other approaches."</blockquote> | |||
=== Replacement Of Assets With Promissory Notes === | |||
Xeggex users discovered "promissory tokens" replacing real assets in their accounts, offering little recourse for users trying to withdraw or trade<ref name="rektnews-18286" />. | |||
== Total Amount Recovered == | == Total Amount Recovered == | ||
There do not appear to have been any funds recovered in this case. | There do not appear to have been any funds recovered in this case. | ||
Users were granted promissory notes in place of assets they previously held<ref name="rektnews-18286" />. | |||
== Ongoing Developments == | == Ongoing Developments == | ||
The situation remains ongoing. | The situation remains ongoing. As the investigation deepens, users and crypto sleuths question whether Xeggex’s collapse was a carefully orchestrated exit scam, following a pattern of draining assets, fabricating technical issues, and stringing users along with false recovery promises<ref name="rektnews-18286" />. | ||
== Individual Prevention Policies == | == Individual Prevention Policies == | ||
{{Prevention:Individuals:Placeholder}} | {{Prevention:Individuals:Placeholder}} | ||
{{Prevention:Individuals:Avoid Third Party Custodians}} | |||
{{Prevention:Individuals:End}} | {{Prevention:Individuals:End}} | ||
| Line 74: | Line 91: | ||
== References == | == References == | ||
<references><ref name="rektnews-18286">[https://rekt.news/plant-a-red-flag/ | <references> | ||
<ref name="rektnews-18286">[https://rekt.news/plant-a-red-flag/ Plant a Red Flag - Rekt] (Accessed Mar 5, 2025)</ref> | |||
<ref name="jamestyleetweet-18287">[https://twitter.com/RealJamesTylee/status/1887596864406741247 James Tylee - "The @xeggex hacking is 110% an exit scam! They’re saying they have oplogs & opcode for the mongoDB opLogReplay. They claim they have a mongoDB expert they are waiting on. I posted: mongorestore --oplogReplay --dir /path/to/backup ... | <ref name="jamestyleetweet-18287">[https://twitter.com/RealJamesTylee/status/1887596864406741247 James Tylee - "The @xeggex hacking is 110% an exit scam! They’re saying they have oplogs & opcode for the mongoDB opLogReplay. They claim they have a mongoDB expert they are waiting on. I posted: mongorestore --oplogReplay --dir /path/to/backup And they ... muted me." - Twitter/X] (Accessed Mar 5, 2025)</ref> | ||
<ref name="smollspintwitter-18288">[https://twitter.com/Smoll_Spin/status/1887623425335664959 <nowiki>GeraldoXeggeX - "We had the call at 4am EST to get synced up with them on the situation. They were under the impression we used MongoDB Community, but we use Percona. Sounds like it might not be an issue, but it is/was. So they need a different set of people that would assist with that particula[r] distributeion. Aside from that, we are looking at other approaches." - Telegram Shared Via Smoll_Spin Twitter</nowiki>] (Accessed Mar 5, 2025)</ref> | |||
<ref name="smollspintwitter-18288">[https://twitter.com/Smoll_Spin/status/1887623425335664959 | |||
<ref name="xeggextweet-18289">[https://twitter.com/xeggex/status/1886347642281574564 Xeggex - "Dear users, in this hard time our CEO was hacked and he lost tg account and xeggex community group beside that we still don't know details about it. Also what is important in this moment is that we succeed to lock down wallets so funds a...ter/X] (Accessed Mar 5, 2025)</ref> | <ref name="xeggextweet-18289">[https://twitter.com/xeggex/status/1886347642281574564 Xeggex - "Dear users, in this hard time our CEO was hacked and he lost tg account and xeggex community group beside that we still don't know details about it. Also what is important in this moment is that we succeed to lock down wallets so funds a...ter/X] (Accessed Mar 5, 2025)</ref> | ||
<ref name="xeggex-18290">[https://xeggex.com/ XeggeX Cryptocurrency Exchange Homepage] (Accessed Mar 5, 2025)</ref> | |||
<ref name="xeggex-18290">[https://xeggex.com/ XeggeX Cryptocurrency Exchange] (Accessed Mar 5, 2025)</ref></references> | </references> | ||
Latest revision as of 13:50, 7 March 2025
Notice: This page is a new case study and some aspects have not been fully researched. Some sections may be incomplete or reflect inaccuracies present in initial sources. Please check the References at the bottom for further information and perform your own additional assessment. Please feel free to contribute by adding any missing information or sources you come across. If you are new here, please read General Tutorial on Wikis or Anatomy of a Case Study for help getting started.
Summary.
About Xeggex
Xeggex built its reputation as a haven for low-cap tokens and regulatory avoidance[1]. Xeggex claimed to offer a comprehensive suite of services tailored to cryptocurrency traders and investors[2]. The platform provided access to Spot Markets, where users can buy and sell over 450 different assets across more than 1,100 markets[2]. The interface was designed for simplicity, making it accessible for both novice and experienced traders[2]. This allowed users to engage in trading activities with ease and efficiency[2]. Additionally, Xeggex offered Liquidity Pools, which enable users to provide liquidity and earn rewards from transaction fees and other bonuses generated by the platform's activities[2].
The platform also facilitated Peer-to-Peer (P2P) Trading, allowing users to trade cryptocurrencies directly with one another globally, with a very low fee of just 0.2%[2]. This provided greater flexibility for traders who prefer dealing with peers rather than through centralized exchanges[2]. For users interested in digital art and collectibles, Xeggex hosted an NFT Marketplace, where individuals can discover, buy, and sell NFTs, expanding their trading opportunities beyond traditional cryptocurrencies[2]. Furthermore, the platform included Faucets, enabling users to claim free cryptocurrency or create faucets to promote certain assets[2].
A key feature that Xeggex promoted is its native XPE Token, which offers various benefits[2]. By holding XPE tokens in their accounts, users could reduce their trading and withdrawal fees, pay for liquidity pool participation, and promote their assets on the platform[2]. The use of XPE can save users up to 25% on fees, making it an attractive incentive for active traders[2]. This native token is central to Xeggex's ecosystem and aimed to enhance the overall user experience by offering financial savings and additional utility across the platform[2].
To cater to the needs of on-the-go traders, Xeggex also offers a mobile app available for both Android and iOS devices, allowing users to trade conveniently from their smartphones[2]. The platform's emphasis on ultra-low fees was a significant selling point, especially for those who choose to use XPE tokens for fee payments[2]. Lastly, Xeggex provided a variety of market pairs, from popular cryptocurrencies like Bitcoin and Ethereum to lesser-known altcoins, ensuring a diverse range of trading opportunities for all types of users[2].
The Reality
It is alleged that the Xeggex platform was actually operated by Paul Vernon[1].
The Xeggex platform reportedly managed large financial transactions using MongoDB[3].
Suspicious transfers were detected before the hack announcement, and blockchain analysis showed millions in altcoins locked in wallets, with some remaining untouched for weeks[1].
What Happened
Starting on February 3rd, 2025, users no longer had access to their funds. The platform claimed technical difficulties after its CEO's account was allegedly "hacked" and the database corrupted[1].
| Date | Event | Description |
|---|---|---|
| January 11th, 2025 9:12:00 PM MST | Xeggex Ignores 2FA Vulnerability | According to Twitter/X user Foquismo_, they reported an issue with the 2FA system in Xeggex at this time[4]. The Xeggex team reportedly "informed[ them] that such an event was impossible and that [they] must have made an error, asserting that Xeggex was 100% secure"[4]. |
| February 3rd, 2025 2:34:00 AM MST | Xeggex Announces CEO Hacked | Xeggex posts on Twitter/X to announce that their CEO had their Telegram account hacked[5]. |
| February 6th, 2025 1:18:00 PM MST | James Tylee Telegram Muted | James Tylee reports that he is muted from the official Xeggex Telegram group chat, shortly after providing commands which can assist with recovering the MongoDB database[6]. |
| February 6th, 2025 3:04:00 PM MST | Using Percona Database | A screenshot of Telegram chat reports that the exchange team is claiming that the expert they were meeting with is unable to help them because they are using Percona database rather than MongoDB[3]. |
| March 5th, 2025 9:42:00 AM MST | Rekt News Article Published | Rekt shares an article summarizing the Xeggex situation, reporting the sudden collapse of the altcoin exchange amid claims of a "hack" and database corruption[1][7]. The timing of the incident raised suspicions, as millions in funds appeared to have been moved before the alleged hack, and wallet activity continued despite the exchange's claims of technical difficulties[1]. Users were eventually given "promissory tokens" in place of real assets, and investigations into the collapse revealed similarities to past exchange failures, particularly Cryptsy and Altilly[1]. The article suggests a pattern of exit scams orchestrated by operators who drain assets, fabricate technical issues, and delay recovery, leaving users with empty promises[1]. |
Technical Details
The situation mirrors previous exchange collapses, such as Cryptsy and Altilly, with shared patterns of "hacks," database failures, and indefinite recovery promises[1]. Community investigations suggest potential links to Paul Vernon, the figure behind Cryptsy's collapse[1].
Total Amount Lost
The total amount lost is unknown.
How much was lost and how was it calculated? If there are conflicting reports, which are accurate and where does the discrepancy lie?
Immediate Reactions
Xeggex posted an initial update on their Twitter/X account shortly after disabling withdrawals[5]:
Dear users, in this hard time our CEO was hacked and he lost tg account and xeggex community group beside that we still don't know details about it. Also what is important in this moment is that we succeed to lock down wallets so funds are safe. Problem with logins is still there due that we disconnected database from the network and we will go in the background to examine everything.. Next news will be more detailed after we get wider picture.
Users criticized the platform's use of MongoDB[8].
I also question why they are using Mongo, or any NoSql / document db for that matter. IMO, With something as critical as financial transactions and a significant user base, they should be using a real relational db and have a proper DR and Business Continuity plans, along with periodic testing of those processes so they are prepared to handle this type of situation.
Despite claiming technical issues, the exchange's wallets continued to show activity, particularly with Pepe transactions[1].
Ultimate Outcome
What was the end result? Was any investigation done? Were any individuals prosecuted? Was there a lawsuit? Was any tracing done?
Reported Attempts To Resolve Database Issue
Geraldo from the Xeggex team reported that they had met with a team to discuss their database at 4 AM[3]:
"We had the call at 4am EST to get synced up with them on the situation. They were under the impression we used MongoDB Community, but we use Percona. Sounds like it might not be an issue, but it is/was. So they need a different set of people that would assist with that particula[r] distributeion. Aside from that, we are looking at other approaches."
Replacement Of Assets With Promissory Notes
Xeggex users discovered "promissory tokens" replacing real assets in their accounts, offering little recourse for users trying to withdraw or trade[1].
Total Amount Recovered
There do not appear to have been any funds recovered in this case.
Users were granted promissory notes in place of assets they previously held[1].
Ongoing Developments
The situation remains ongoing. As the investigation deepens, users and crypto sleuths question whether Xeggex’s collapse was a carefully orchestrated exit scam, following a pattern of draining assets, fabricating technical issues, and stringing users along with false recovery promises[1].
Individual Prevention Policies
No specific policies for individual prevention have yet been identified in this case.
When using any third party custodial platform (such as for trading), it is important to verify that the platform has a full backing of all assets, and that assets have been secured in a proper multi-signature wallet held by several trusted and trained individuals. If this can't be validated, then users should avoid using that platform. Unfortunately, most centralized platforms today still do not provide the level of transparency and third party validation which would be necessary to ensure that assets have been kept secure and properly backed. Therefore, the most effective strategy at present remains to learn proper self custody practices and avoid using any third party custodial platforms whenever possible.
For the full list of how to protect your funds as an individual, check our Prevention Policies for Individuals guide.
Platform Prevention Policies
Policies for platforms to take to prevent this situation have not yet been selected in this case.
For the full list of how to protect your funds as a financial service, check our Prevention Policies for Platforms guide.
Regulatory Prevention Policies
No specific regulatory policies have yet been identified in this case.
For the full list of regulatory policies that can prevent loss, check our Prevention Policies for Regulators guide.
References
- ↑ 1.00 1.01 1.02 1.03 1.04 1.05 1.06 1.07 1.08 1.09 1.10 1.11 1.12 1.13 Plant a Red Flag - Rekt (Accessed Mar 5, 2025)
- ↑ 2.00 2.01 2.02 2.03 2.04 2.05 2.06 2.07 2.08 2.09 2.10 2.11 2.12 2.13 2.14 2.15 XeggeX Cryptocurrency Exchange Homepage (Accessed Mar 5, 2025)
- ↑ 3.0 3.1 3.2 GeraldoXeggeX - "We had the call at 4am EST to get synced up with them on the situation. They were under the impression we used MongoDB Community, but we use Percona. Sounds like it might not be an issue, but it is/was. So they need a different set of people that would assist with that particula[r] distributeion. Aside from that, we are looking at other approaches." - Telegram Shared Via Smoll_Spin Twitter (Accessed Mar 5, 2025)
- ↑ 4.0 4.1 Foquismo - "On January 11, 2025, I reported to #Xeggex that I had discovered a sequence of actions that bypasses the two-factor authentication (2FA) for withdrawals. Upon reporting this issue, I was informed that such an event was impossible and that I must have made an error, asserting that Xeggex was 100% secure. In the future, if this happens again, I will withdraw all funds before reporting the issue." - Twitter/X (Accessed Mar 6, 2025)
- ↑ 5.0 5.1 Xeggex - "Dear users, in this hard time our CEO was hacked and he lost tg account and xeggex community group beside that we still don't know details about it. Also what is important in this moment is that we succeed to lock down wallets so funds a...ter/X (Accessed Mar 5, 2025)
- ↑ James Tylee - "The @xeggex hacking is 110% an exit scam! They’re saying they have oplogs & opcode for the mongoDB opLogReplay. They claim they have a mongoDB expert they are waiting on. I posted: mongorestore --oplogReplay --dir /path/to/backup And they ... muted me." - Twitter/X (Accessed Mar 5, 2025)
- ↑ Rekt News - "Suspicious transfers left @xeggex hours before their CEO’s alleged “hack,” drawing comparisons to past exchange collapses. Promissory tokens replace real assets and users are stranded in crypto’s latest ghost town." - Twitter (Accessed Mar 6, 2025)
- ↑ Retro Mike Tech - "I also question why they are using Mongo, or any NoSql / document db for that matter. IMO, With something as critical as financial transactions and a significant user base, they should be using a real relational db and have a proper DR and Business Continuity plans, along with periodic testing of those processes so they are prepared to handle this type of situation." - Twitter/X (Accessed Mar 6, 2025)