Top

Hot Wallet Exploit Results in $23M Bitrue Loss

Web3 & Enterprise·April 19, 2023, 3:34 AM

Bitrue, a Singapore-based crypto exchange, has fallen prey to a $23 million hack due to a hot wallet exploit. The exchange has been forced to suspend all withdrawals until April 18, to provide an opportunity to conduct a thorough security review.

wallet with 20 USD bills in cash
©Pexels/Karolina Grabowska

 

Hot wallet vulnerability

Hot wallets are used by exchanges to store small amounts of cryptocurrencies for easy access. These wallets are connected to the internet and are therefore more vulnerable to attacks compared to cold wallets, which are stored offline. In the case of Bitrue, hackers were able to exploit the hot wallet and steal cryptocurrencies worth $23 million.

In a series of Twitter posts, the exchange outlined that the exploit occurred at 07:18 (UTC) on Friday. “We were able to address the matter quickly and prevented the further exploit of funds”, it went on to state.

The stolen digital assets include ETH, QNT, GALA, SHIB, HOT and MATIC. Bitrue outlined that the hot wallet funds account for only 5% of overall funds and that the rest of its wallets remain secure and have not been compromised.

Blockchain security firm PeckShield outlined how the funds were swapped and drained. A wallet it has labeled as “Bitrue drainer” swapped 173,000 QNT, 22.55 billion SHIB tokens, 46.4 million GALA and 310,000 MATIC for 8,540 ETH. The ether is now being held within the following address:

0x1819EDe3B8411EbC613F3603813Bf42aE09bA5A5

 

Reimbursing users

In response to the hack, Bitrue has promised to reimburse all affected users. However, the process could take some time.

The incident underscores the importance of taking precautions when storing cryptocurrencies on exchanges. Users should only keep a minimal amount of cryptocurrencies on an exchange and should not store more than they can afford to lose. Ongoing exploits, hacks and frauds exemplify the need for users to only use reputable platforms with a proven track record of security.

 

Doubling down on security

Bitrue has promised to improve its security measures to prevent similar incidents from occurring in the future. The exchange’s response to the hack has been lauded by many in the cryptocurrency community, who have praised the company’s transparency and commitment to reimbursing affected users.

The cryptocurrency community has been vocal in its criticism of exchanges that fail to prioritize security. The Bitrue hack is just the latest in a series of incidents that have highlighted the importance of maintaining security in the world of cryptocurrency.

It’s not the first security breach that the exchange has encountered. In 2019 Bitrue suffered a $4.7 million loss, with quantities of both XRP and Cardano (ADA) having been stolen. On that occasion, the exchange released tracking details relative to the stolen funds. Thanks to collaboration with Huobi, Bittrex and ChangeNOW, the funds and associated accounts were frozen.

According to data from CoinGecko, Bitrue trades an average of $1 billion in digital assets daily, with bitcoin and ether trading pairs accounting for a large proportion of that trading volume. The Bitrue hack has been a wake-up call for the cryptocurrency community and serves as a reminder of the ongoing risks associated with storing cryptocurrencies on exchanges.

More to Read
View All
Web3 & Enterprise·

Apr 15, 2025

Avalon integrated with Bybit to offer Bitcoin yield

Dubai-headquartered global crypto exchange Bybit has integrated the Avalon Finance protocol within its platform to offer users greater opportunities to earn yield on Bitcoin. Avalon Finance is a decentralized lending protocol that offers a range of financial services on the Merlin Chain, a Bitcoin layer-2 network. It facilitates users to borrow stablecoins using their Bitcoin as collateral, while also providing opportunities to earn yield by contributing to digital asset liquidity pools.Photo by Kanchanara on UnsplashCeFi to DeFi bridgeAvalon Labs, the driving force behind the Avalon Finance protocol, took to X on April 14 to outline that the protocol had gone live on Bybit. It stated:”By integrating with Bybit Earn, Avalon unlocks new yield opportunities for Bitcoin holders by arbitraging our fixed-rate institutional borrowing layer — delivering predictable, enhanced returns through a seamless CeFi-to-DeFi bridge.” Avalon claims to offer a mechanism which brings Bitcoin into DeFi. It accepts FBTC, an omnichain digital asset with $1.25 billion in total value locked (TVL), pegged 1:1 with Bitcoin, as collateral, while lending it out at fixed interest rates. USDT stablecoin borrowed on the strength of that Bitcoin can then be deployed by platform users to execute high-yielding DeFi strategies via the Ethena Labs synthetic dollar protocol, implicating the use of Ethena USD (USDe) and Ethena Staked USD (sUSDE). In this way, the Avalon Finance protocol is providing a conduit between centralized finance and decentralized finance. Avalon Labs claims that the offering turns Bitcoin into a productive asset. It stated: “Returns are stable, secure, and passed back to Bybit Earn users—making Bitcoin a productive asset while maintaining simplicity and risk control.” More exchange collaborations plannedIt’s understood that Avalon plans to collaborate similarly with other crypto exchanges in the future. Towards the end of 2024, the firm raised $10 million in Series A funding, with the funding round having been led by Framework Ventures, with participation from UXTO Management, Presto Labs and Kenetic Capital. At the time, Avalon Labs asserted that the funding would be used to expand its Bitcoin-centric ecosystem.  BTC-backed public debt fundTaking to X in February, the project outlined that after years of research, it was working towards the launch of a Bitcoin-backed public debt fund that would fall within the parameters of the U.S. Securities and Exchange Commission’s (SEC) regulatory framework. The firm stated:”By exploring regulated investment structures, we aim to bridge the gap between traditional finance and crypto, opening new opportunities for Bitcoin-backed financial products.” Regulation A is an exemption offered by the SEC enabling a company to sell securities to the investing public without full registration. Should it eventually take this path forward, the project would pioneer this approach to launching a public debt fund as little progress has been made by others in taking such a Bitcoin-related product forward to date. Towards the end of last month, Avalon Labs announced that it has added support for BlackRock’s “BUIDL” fund, a tokenized fund created by the world’s largest asset manager, which invests in short-term U.S. Treasury bills.

news
Policy & Regulation·

Oct 06, 2025

Shanghai launches international digital yuan hub to boost global use

China has inaugurated a new center in Shanghai dedicated to the international operation of its central bank digital currency (CBDC), the e-CNY, the People's Bank of China (PBOC) recently announced. The hub also launched three specialized platforms for cross-border digital payments, blockchain services, and digital assets, according to state-run Xinhua News Agency. The initiative is a key part of China's strategy to promote the digital yuan's adoption beyond its domestic borders. This effort aligns with a broader trend among BRICS nations, which have increased their use of the Chinese yuan for trade settlements. A Crypto Briefing report indicates that yuan-denominated payments accounted for roughly 24% of the bloc's trade transactions in early 2025.Photo by Edward He on UnsplashDifference between digital yuan and stablecoinsThe e-CNY, which functions without needing a bank account, is designed for daily uses like retail shopping, salary distribution, and transportation fares. While it cannot be converted into foreign currencies, its cross-border capabilities are being explored through the mBridge project, a multinational effort coordinated by the Bank for International Settlements. In contrast to the state-controlled e-CNY, privately issued stablecoins, blockchain-based tokens pegged to fiat currencies like the U.S. dollar, are also gaining traction. These digital assets, backed by reserves such as U.S. Treasury bills, are widely used for faster and cheaper cross-border payments and remittances. Hong Kong established a clear regulatory framework for stablecoins on Aug. 1, setting high standards for potential issuers. However, the Hong Kong Monetary Authority (HKMA) has stated that it does not expect to grant the first licenses until early next year. Yuan stablecoin in KazakhstanRecently, the HKMA had to clarify the status of stablecoin issuance in the region. According to the South China Morning Post, the monetary authority issued a statement refuting social media reports that the first offshore yuan-pegged stablecoin had been launched in Hong Kong. The company involved, AnchorX, later clarified on X that its yuan-pegged digital asset, AxCNH, was launched in Kazakhstan under a license from the Astana Financial Services Authority (AFSA). Despite its launch outside of Hong Kong, the AxCNH stablecoin is seen by some as part of Beijing's broader ambitions. Yang Guang, the CTO of Conflux, which provides technical expertise to AnchorX, told Reuters that the Sept. 17 launch represents an effort to leverage blockchain technology for international trade. Yang suggested that Beijing would likely support such initiatives if they facilitate commerce, noting that offshore yuan stablecoins could be issued without direct sign-off from China's central bank. Market analysts view China’s latest initiatives as part of a broader, multi-pronged strategy. Augustine Fan, head of insights at digital asset platform SignalPlus, described the stablecoin project as “another venue or trial to push the use of the offshore yuan,” adding that it also reflects the government’s cautiously positive stance toward blockchain technology. China’s stablecoin ambiguityAt the policy level, signals remain mixed. A Caixin report indicated that Chinese digital platforms, state-owned enterprises (SOEs), and financial institutions in Hong Kong may face restrictions on stablecoin and broader crypto activity. In addition, branches of SOEs and major banks are unlikely to seek stablecoin licenses in the region. The English version of the Caixin article remains accessible, but Cointelegraph observed that the Chinese-language version has since been taken down.At the same time, official engagement is visible. The National Natural Science Foundation of China (NSFC), a vice-ministerial institution under the Ministry of Science and Technology that oversees the National Natural Science Fund, earlier announced grants for research on stablecoins and the development of cross-border monitoring frameworks. According to the South China Morning Post, the foundation launched the study in response to concerns that unregulated circulation of private stablecoins, particularly those pegged to the U.S. dollar, could weaken capital controls and pose risks to the yuan. A clearer policy direction is expected once the results of this research are available.

news
Web3 & Enterprise·

Jan 05, 2024

Ethereum Foundation targets Asian expansion with Bangkok set for Devcon 7

The Ethereum Foundation is set to make a significant impact on the Southeast Asian Ethereum community as it announces Bangkok as the location for Devcon 7.Photo by Viktor Forgacs on UnsplashFocusing on Southeast AsiaThe Ethereum developer conference will be held in the Thai capital from Nov. 12 to 15. The decision signifies a broadened vision for the event, shifting from a city-focused approach to embracing the entire Southeast Asia region as the backdrop for this community gathering. To underscore the Foundation’s intent, it has renamed the event from Devcon 7 to "Devcon Southeast Asia." Expressing enthusiasm about the potential and rapid growth of the Ethereum community in Southeast Asia, the Ethereum Foundation sees the scheduling of Devcon 7 for 2024 as an opportunity to deeply engage with local communities, providing meaningful support and empowerment. This shift aims to make Devcon 7 a more inclusive and regionally focused event, aptly named "Devcon Southeast Asia" to highlight its broader reach and impact. There has already been a positive reaction from crypto community members in the region in response to the choice of Bangkok for the conference. Navaporn Nalita, the founder of Crypto City Connext in Thailand wrote that “Bangkok's collaborative ecosystem, welcomes Devcon 2024 with open arms (and open blockchains)! Thailand's vibrant dev scene is primed to ignite alongside the world's brightest minds.” In short order, community builders have been looking to make the most out of the opportunity. Aligning with crypto growth potentialAccording to the blog post published by the Ethereum Foundation outlining the announcement, the choice of Bangkok as the host city aligns with the region's crypto adoption growth. Countries like Vietnam, the Philippines, Indonesia and Thailand have shown remarkable positions in the Global Crypto Adoption Index, underscoring the pivotal role of Southeast Asia in the global Ethereum landscape. To support Ethereum events, grassroots communities and educational initiatives in Southeast Asia, the Ethereum Foundation (EF) initiated the Road to Devcon (RTD) Grants round on June 29. This grant round is specifically aimed at individuals in Southeast Asia actively building communities, developing educational activities, and contributing to the growth of the Ethereum ecosystem. Encouraging smaller meet-ups over large events, the EF set the maximum grant at $1,000. The initiative aims to empower the Southeast Asian Ethereum community by providing support along the Road to Devcon. In a recent Chainalysis research report, Vietnam has emerged as the leader in cryptocurrency adoption within Southeast Asia, claiming the top spot in the region and ranking third globally in the Global Crypto Adoption Index for 2023. This index considers transaction volumes, protocols, web traffic patterns and factors like population size and purchasing power. The competition among Southeast Asian countries to establish themselves as crypto hubs is evident. Each nation adopts different regulatory approaches, with Singapore and Thailand implementing stricter measures. There has been a steady stream of Ethereum developer-centric conferences in recent years. 2022 featured EthDenver, Avax Barcelona, Devconnect Amsterdam, Devcon Bogota and EthSF (San Francisco). EthDenver, EthCC Paris and Devconnect Istanbul followed in 2023. As Devcon Southeast Asia approaches, the Ethereum Foundation anticipates fostering deeper connections and collaboration in this vibrant and evolving ecosystem. 

news
Loading