Alright, so there's a lot of chaotic tweets going on, so I wanted to put together a few of the factoids that we know thus far about the Bitfinex hack. There continue to be many updates to this. Please scroll to the bottom to see the latest!
1. Breach Reported at 3PM
Zane Tackett, the Director of Community & Product Development took to Reddit to explain that there had been a breach found that required all trading to halt on Bitfinex.
He said: " We are investigating the breach to determine what happened, but we know that some of our users have had their bitcoins stolen. We are undertaking a review to determine which users have been affected by the breach."
According to Zane, the hack occurred today. And the only currency impacted was Bitcoin, so all Ether and Fiat (USD) held in its accounts are perfectly safe.
2. 0.5% of Bitcoin
Originally, it was believed that only 0.5% of Bitfinex's reserves had been stolen, but this was actually a misrepresented tweet from an earlier hack.
In reality, the amount of bitcoin that has been stolen has not yet been reported by Bitfinex, though there is speculation that it could be much more.
3. Could it be 150K?
The above image is important because it shows all the bitcoin that are held in p2sh addresses. A p2sh address is, essentially, a multi-sig wallet.
As you can see, the numbers hardcore dropped today at sometime in the morning from around 12.5% to 11.75%. According to some analysis, that .75% drop in total bitcoin held in p2sh addresses could be as much as 157,905BTC or 1%.
The sudden drop in bitcoin in multi-sig wallets (which is what Bitfinex uses) correlates too nicely with the breach today.
4. Big spike in mempool
Between 4:30 and 6:00 this morning, there was a sudden spike in transactions on the memepool, which lists all transactions. If we look at the first image and then this one, they appear to happen at around the same time.
What this leads us to believe is that bitcoin were being moved out of those multi-sig addresses in hundreds of thousands of transactions.
5. Bitfinex uses BitGo
What has many users concerned is that Bitfinex uses BitGo for its wallets. BitGo is the biggest reason we have multi-sig wallets today, so if someone gained access, there could be far worse implications than people are revealing.
That would, normally, be a fine thing because BitGo has insurance. Except, that insurance is only useful if the incident is caused by BitGo.
Mentor77, a user on reddit, wrote the following: "That [BitGo insurance] only covers incidents caused by BitGo. If Bitfinex's keys were breached and the hacker was signing with them, BitGo was signing legitimate transactions as far as their agreements are concerned."
Remember, multi-sig requires two signatures. If Bitfinex is signing a signature, there's no reason for BitGo not to as well.
Update: Price of Bitcoin Drops 11%
Over the past 24 hours, the price has dropped from an already lower $610 to around $540, an 11% drop. With one exchange getting hacked, fear kicks in, resulting in other people selling their bitcoin with an uncertainty on how low the price could go.
Update: Bitfinex Confirms Amount Stolen
According to Zane, 119,756 bitcoin has been stolen from Bitfinex as previously reported earlier in our report. At time of submission, 7:26PM EST, that is equal to $61.6 million. At the time of the hack, this was closer to $100 million worth of bitcoin stolen.
Update: BitGo Not At Fault
According to a reddit post, Zane said the following: "We're still investigating the hack to figure out exactly how we were compromised, but it does look like it's on us [Bitfinex]." This came after being asked if this was a user error or a BitGo error.
BitGo Confirms No Fault
In a tweet sent out by BitGo, it confirmed that it was not at fault for the recent hack of Bitfinex.
