• bitcoinBitcoin (BTC) $ 63,936.00
  • ethereumEthereum (ETH) $ 1,862.50
  • tetherTether (USDT) $ 1.00
  • bnbBNB (BNB) $ 594.07
  • xrpXRP (XRP) $ 1.29
  • usd-coinUSDC (USDC) $ 0.999988
  • solanaSolana (SOL) $ 78.95
  • tronTRON (TRX) $ 0.278942
  • staked-etherLido Staked Ether (STETH) $ 2,265.05
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.05
  • dogecoinDogecoin (DOGE) $ 0.088771
  • whitebitWhiteBIT Coin (WBT) $ 47.92
  • usdsUSDS (USDS) $ 0.999814
  • cardanoCardano (ADA) $ 0.263593
  • bitcoin-cashBitcoin Cash (BCH) $ 444.56
  • wrapped-stethWrapped stETH (WSTETH) $ 2,779.67
  • leo-tokenLEO Token (LEO) $ 8.83
  • hyperliquidHyperliquid (HYPE) $ 27.34
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 76,243.00
  • moneroMonero (XMR) $ 331.38
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.998762
  • canton-networkCanton (CC) $ 0.160786
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 2,466.93
  • ethena-usdeEthena USDe (USDE) $ 0.999203
  • chainlinkChainlink (LINK) $ 8.30
  • stellarStellar (XLM) $ 0.149262
  • wrapped-eethWrapped eETH (WEETH) $ 2,465.31
  • usd1-wlfiUSD1 (USD1) $ 1.00
  • rainRain (RAIN) $ 0.009213
  • susdssUSDS (SUSDS) $ 1.08
  • paypal-usdPayPal USD (PYUSD) $ 0.999943
  • daiDai (DAI) $ 0.999689
  • hedera-hashgraphHedera (HBAR) $ 0.095140
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 76,366.00
  • litecoinLitecoin (LTC) $ 51.94
  • avalanche-2Avalanche (AVAX) $ 8.52
  • zcashZcash (ZEC) $ 207.49
  • wethWETH (WETH) $ 2,268.37
  • shiba-inuShiba Inu (SHIB) $ 0.000006
  • suiSui (SUI) $ 0.832223
  • the-open-networkToncoin (TON) $ 1.23
  • usdt0USDT0 (USDT0) $ 0.998824
  • crypto-com-chainCronos (CRO) $ 0.072599
  • tether-goldTether Gold (XAUT) $ 5,433.41
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.106531
  • pax-goldPAX Gold (PAXG) $ 5,521.17
  • memecoreMemeCore (M) $ 1.46
  • polkadotPolkadot (DOT) $ 1.46
  • uniswapUniswap (UNI) $ 3.55
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.22
  • mantleMantle (MNT) $ 0.618175
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • hashnote-usycCircle USYC (USYC) $ 1.12
  • global-dollarGlobal Dollar (USDG) $ 1.00
  • falcon-financeFalcon USD (USDF) $ 0.996456
  • aster-2Aster (ASTER) $ 0.688150
  • aaveAave (AAVE) $ 105.95
  • bittensorBittensor (TAO) $ 167.64
  • okbOKB (OKB) $ 73.44
  • pi-networkPi Network (PI) $ 0.163391
  • bitget-tokenBitget Token (BGB) $ 2.14
  • syrupusdcsyrupUSDC (SYRUPUSDC) $ 1.15
  • skySky (SKY) $ 0.065034
  • ripple-usdRipple USD (RLUSD) $ 0.999882
  • pepePepe (PEPE) $ 0.000003
  • htx-daoHTX DAO (HTX) $ 0.000002
  • nearNEAR Protocol (NEAR) $ 1.06
  • bfusdBFUSD (BFUSD) $ 0.999158
  • ethereum-classicEthereum Classic (ETC) $ 8.19
  • internet-computerInternet Computer (ICP) $ 2.31
  • ondo-financeOndo (ONDO) $ 0.241940
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 11.00
  • gatechain-tokenGate (GT) $ 6.70
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.101575
  • worldcoin-wldWorldcoin (WLD) $ 0.370920
  • pump-funPump.fun (PUMP) $ 0.001760
  • morphoMorpho (MORPHO) $ 1.77
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 4.00
  • kucoin-sharesKuCoin (KCS) $ 7.36
  • hash-2Provenance Blockchain (HASH) $ 0.017401
  • midnight-3Midnight (NIGHT) $ 0.055991
  • cosmosCosmos Hub (ATOM) $ 1.79
  • jito-staked-solJito Staked SOL (JITOSOL) $ 124.46
  • usdtbUSDtb (USDTB) $ 1.00
  • nexoNEXO (NEXO) $ 0.825178
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 2,404.69
  • eutblSpiko EU T-Bills Money Market Fund (EUTBL) $ 1.24
  • ethenaEthena (ENA) $ 0.096148
  • binance-peg-wethBinance-Peg WETH (WETH) $ 2,262.26
  • kaspaKaspa (KAS) $ 0.028714
  • rocket-pool-ethRocket Pool ETH (RETH) $ 2,631.35
  • official-trumpOfficial Trump (TRUMP) $ 3.25
  • ousgOUSG (OUSG) $ 114.44
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999945
  • usddUSDD (USDD) $ 1.00
  • flare-networksFlare (FLR) $ 0.008780
  • wbnbWrapped BNB (WBNB) $ 759.61
  • algorandAlgorand (ALGO) $ 0.082614
  • ignition-fbtcFunction FBTC (FBTC) $ 76,389.00
  • janus-henderson-anemoy-aaa-clo-fundJanus Henderson Anemoy AAA CLO Fund (JAAA) $ 1.03
  • filecoinFilecoin (FIL) $ 0.932471
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.11
  • aptosAptos (APT) $ 0.880127
  • render-tokenRender (RENDER) $ 1.31
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.11
  • xdce-crowd-saleXDC Network (XDC) $ 0.032979
  • stable-2​​Stable (STABLE) $ 0.031177
  • beldexBeldex (BDX) $ 0.080337
  • binance-staked-solBinance Staked SOL (BNSOL) $ 108.24
  • pippinpippin (PIPPIN) $ 0.596453
  • vechainVeChain (VET) $ 0.006865
  • janus-henderson-anemoy-treasury-fundJanus Henderson Anemoy Treasury Fund (JTRSY) $ 1.10
  • usual-usdUsual USD (USD0) $ 0.996058
  • arbitrumArbitrum (ARB) $ 0.092387
  • ghoGHO (GHO) $ 1.00
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999720
  • jupiter-exchange-solanaJupiter (JUP) $ 0.146581
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 76,461.00
  • a7a5A7A5 (A7A5) $ 0.012888
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 76,491.00
  • decredDecred (DCR) $ 28.65
  • true-usdTrueUSD (TUSD) $ 0.998815
  • bonkBonk (BONK) $ 0.000006
  • clbtcclBTC (CLBTC) $ 76,920.00
  • fasttokenFasttoken (FTN) $ 1.09
  • euro-coinEURC (EURC) $ 1.18
  • usdaiUSDai (USDAI) $ 1.00
  • kite-2Kite (KITE) $ 0.249871
  • blockstackStacks (STX) $ 0.244742
  • sei-networkSei (SEI) $ 0.064389
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 2,419.84
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.637402
  • kinesis-goldKinesis Gold (KAU) $ 174.78
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 33.97
  • tbtctBTC (TBTC) $ 70,942.00
  • justJUST (JST) $ 0.046775
  • pancakeswap-tokenPancakeSwap (CAKE) $ 1.24
  • wrappedm-by-m0WrappedM by M0 (WM) $ 1.00
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.006322
  • dashDash (DASH) $ 31.18
  • tezosTezos (XTZ) $ 0.360935
  • power-protocolPower Protocol (POWER) $ 1.82
  • first-digital-usdFirst Digital USD (FDUSD) $ 1.00
  • usxUSX (USX) $ 0.999786
  • ether-fiEther.fi (ETHFI) $ 0.470955
  • mantle-staked-etherMantle Staked Ether (METH) $ 2,455.82
  • curve-dao-tokenCurve DAO (CRV) $ 0.230938
  • hastra-primePRIME (PRIME) $ 1.02
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999983
  • c8ntinuumc8ntinuum (CTM) $ 0.077027
  • resolv-wstusrResolv wstUSR (WSTUSR) $ 1.13
  • lighterLighter (LIT) $ 1.32
  • cocaCOCA (COCA) $ 1.30
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.146219
  • apenftAINFT (NFT) $ 0.00000033
  • bittorrentBitTorrent (BTT) $ 0.00000033
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 2,406.26
  • chilizChiliz (CHZ) $ 0.031536
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 76,200.00
  • gnosisGnosis (GNO) $ 120.27
  • story-2Story (IP) $ 0.883516
  • kaiaKaia (KAIA) $ 0.052426
  • layerzeroLayerZero (ZRO) $ 1.51
  • wrapped-flareWrapped Flare (WFLR) $ 0.009961
  • adi-tokenADI (ADI) $ 3.14
  • bitcoin-svBitcoin SV (BSV) $ 15.09
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 2,266.86
  • sun-tokenSun Token (SUN) $ 0.015619
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.12
  • aerodrome-financeAerodrome Finance (AERO) $ 0.322104
  • injective-protocolInjective (INJ) $ 2.91
  • crvusdcrvUSD (CRVUSD) $ 0.990513
  • iotaIOTA (IOTA) $ 0.064002
  • fraxLegacy Frax Dollar (FRAX) $ 0.987627
  • binance-peg-xrpBinance-Peg XRP (XRP) $ 1.59
  • celestiaCelestia (TIA) $ 0.302560
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 2,443.47
  • pyth-networkPyth Network (PYTH) $ 0.046242
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 2,421.84
  • olympusOlympus (OHM) $ 17.04
  • the-graphThe Graph (GRT) $ 0.024675
  • sbtc-2sBTC (SBTC) $ 77,039.00
  • jasmycoinJasmyCoin (JASMY) $ 0.005259
  • flokiFLOKI (FLOKI) $ 0.000027
  • spx6900SPX6900 (SPX) $ 0.276261
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 115.56
  • btse-tokenBTSE Token (BTSE) $ 1.55
  • savings-usddSavings USDD (SUSDD) $ 1.03
  • syrupMaple Finance (SYRUP) $ 0.215311
  • doublezeroDoubleZero (2Z) $ 0.070933
  • lido-daoLido DAO (LDO) $ 0.284691
  • msolMarinade Staked SOL (MSOL) $ 133.18
  • newton-projectAB (AB) $ 0.002426
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 2,265.06
  • conflux-tokenConflux (CFX) $ 0.045760
  • heliumHelium (HNT) $ 1.27
  • telcoinTelcoin (TEL) $ 0.002478
  • optimismOptimism (OP) $ 0.110525
  • staked-aaveStaked Aave (STKAAVE) $ 126.65
  • riverRiver (RIVER) $ 12.05
Bitcoin

Upbit Hack Stemmed From High-Level Mathematical Exploit, Says Local Expert

By admin
0 59

Upbit Hack Stemmed From High-Level Mathematical Exploit, Says Local Expert

A South Korean expert has suggested that the recent Upbit breach may have originated from a high-level mathematical exploit targeting flaws in the exchange’s signature or random-number generation system.

Rather than a conventional wallet compromise, the attack appears to have leveraged subtle nonce-bias patterns embedded in millions of Solana transactions—an approach requiring advanced cryptographic expertise and significant computational resources.

Technical Analysis of the Breach

On Friday, Upbit operator Dunamu’s CEO Kyoungsuk Oh issued a public apology regarding the Upbit incident, acknowledging that the company had discovered a security flaw that allowed an attacker to infer private keys by analyzing a large number of Upbit wallet transactions exposed on the blockchain. His statement, however, raised immediate questions about how private keys could be stolen through transaction data.

The next day, Professor Jaewoo Cho of Hansung University provided insight into the breach, linking it to biased or predictable nonces within Upbit’s internal signing system. Rather than typical ECDSA nonce-reuse flaws, this method exploited subtle statistical patterns in the platform’s cryptography. Cho explained that attackers could examine millions of leaked signatures, infer bias patterns, and ultimately recover private keys.

This perspective aligns with recent studies showing that affinely related ECDSA nonces create a significant risk. A 2025 study on arXiv demonstrated that just two signatures with such related nonces can expose private keys. As a result, private key extraction becomes far easier for attackers who can gather large datasets from exchanges.

The level of technical sophistication suggests an organized group with advanced cryptographic skills conducted this exploit. According to Cho, identifying minimal bias across millions of signatures requires not only mathematical expertise but also extensive computational resources.

In response to the incident, Upbit moved all remaining assets to secure cold wallets and halted digital asset deposits and withdrawals. The exchange has also pledged to restore any losses from its reserves, ensuring immediate damage control.

Extent and Security Implications

Evidence from a Korean researcher indicates that hackers gained access not only to the exchange’s hot wallet but also to individual deposit wallets. This may point to the compromise of sweep-authority keys—or even the private keys themselves—signaling a grave security breach.

Another researcher points out that, if private keys were exposed, Upbit could be forced to comprehensively overhaul its security systems, including its hardware security modules (HSM), multi-party computation (MPC), and wallet structures. This scenario raises questions about internal controls, indicating possible insider involvement and placing Upbit’s reputation at risk. The extent of the attack highlights the need for robust security protocols and strict access controls across major exchanges.

The incident illustrates that even highly engineered systems can conceal mathematical weaknesses. Effective nonce generation must ensure randomness and unpredictability. Detectable bias creates vulnerabilities that attackers can exploit. Organized attackers are increasingly capable of identifying and leveraging these flaws.

Research into ECDSA safeguards stresses that faulty randomness in nonce creation can leak key information. The Upbit case shows how theoretical vulnerabilities can translate into major real-world losses when attackers have the expertise and motivation to exploit them.

Timing and Industry Impact

The attack’s timing has fueled community speculation. It occurred exactly six years after a comparable Upbit breach in 2019, which was attributed to North Korean hackers. Furthermore, the hack coincided with the announcement of a major merger involving Naver Financial and Dunamu, Upbit’s parent company.

Online, some conspiracy theories about coordination or insider knowledge, while others suggest the attack could mask other motives, such as internal embezzlement. Although the clear technical evidence of a complex mathematical exploit points to a highly advanced attack by cybercriminals, critics say the pattern still mirrors longstanding concerns about Korean exchanges:

“Everyone knows these exchanges massacre retail traders by listing questionable tokens and letting them die with no liquidity,” one user wrote. Others noted, “Two overseas altcoin exchanges recently pulled the same stunt and disappeared,” while another accused the company directly: “Is this just internal embezzlement and plugging the hole with company funds?”

The 2019 Upbit case showed that North Korea-aligned entities had previously targeted major exchanges to evade sanctions through cyber theft. Although it’s unclear if the current incident involved state-sponsored actors, the advanced nature of the attack remains concerning.

The post Upbit Hack Stemmed From High-Level Mathematical Exploit, Says Local Expert appeared first on BeInCrypto.

Source

admin 18556 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.