Skip to content

Those Million Dollar Ethereum Transactions? Could Be a Hacked Exchange

Key Takeaways
The transactions could be the result of an exchange getting hacked.
The hacked address could only send funds to other whitelisted addresses, so the hacker may have used the massive fees as a means of ransom.
Mining pools involved in mining the two transactions are trying to find a solution and return the funds.

Share this article

The story of the $5 million Ethereum transaction fee may have finally been solved. According to PeckShield, this incident has all the markings of an exchange that lost control of its private key and is being blackmailed.
Theories Around the Ethereum Transactions
Two transactions with a combined $5 million in fees have been making the rounds on social media.
As the community seeks to decipher the mystery, blockchain security firm PeckShield could have the answer, reported ChainNews.
PeckShield speculates that the hacker might have stolen the credentials to access the funds of a crypto exchange by luring them to a phishing website.
According to the firm, the transactions could be the result of an exchange losing control of its funds to a hacker. But the address could only send funds to a few other whitelisted addresses.

Since the hacker was thus unable to steal funds directly, they threatened to send small transactions with massive fees if they weren’t compensated.
Source: EtherScanPer this theory, the exchange didn’t comply, and the hackers executed these Ethereum transactions. If this was the work of a hacker, their plan seems to have backfired.
The mining pools that validated the blocks containing those transactions – Sparkpool and Ethermine – have promised a solution, with Ethermine explicitly stating they will return the funds to the address if contacted.

Today our Ethermine ETH pool mined a transaction with a ~10.000 ETH fee ( We believe that this was an accident and in order to resolve this issue the tx sender should contact us at via DM or our support portal at immediately!
— Bitfly (@etherchain_org) June 11, 2020
Speculation and Warnings
Even before PeckShield’s report, hardware wallet Trezor highlighted this problem as an attack vector imposed by malware.

The chances of this being an accident repeated twice by the same user are slim. At this point, one can presume bad faith – either malware or a hacker.
It doesn’t need to be an exchange for this story to hold.
But the high number of deposits and withdrawals skews the probability in favor of this being a business. It could be any entity that deals with customer deposits – an exchange, a mining pool, or even a Ponzi scheme.
The address still has over $3 million of Ethereum transactions and is actively sending out transactions. It is presumably draining funds from the vulnerable account unless the hacker still has control and is toying around.
The address that was potentially exploited went from $14 million in holdings to less than $4 million in 3 days, via EtherScanCrypto Briefing will update this article as the story develops.

Share this article

The information on or accessed through this website is obtained from independent sources we believe to be accurate and reliable, but Decentral Media, Inc. makes no representation or warranty as to the timeliness, completeness, or accuracy of any information on or accessed through this website. Decentral Media, Inc. is not an investment advisor. We do not give personalized investment advice or other financial advice. The information on this website is subject to change without notice. Some or all of the information on this website may become outdated, or it may be or become incomplete or inaccurate. We may, but are not obligated to, update any outdated, incomplete, or inaccurate information.
You should never make an investment decision on an ICO, IEO, or other investment based on the information on this website, and you should never interpret or otherwise rely on any of the information on this website as investment advice. We strongly recommend that you consult a licensed investment advisor or other qualified financial professional if you are seeking investment advice on an ICO, IEO, or other investment. We do not accept compensation in any form for analyzing or reporting on any ICO, IEO, cryptocurrency, currency, tokenized sales, securities, or commodities.
See full terms and conditions.

Highest Ethereum Transaction Fee Ever? Someone Accidentally Paid a $2….

This Proposal Could Solve Ethereum’s Congestion Problem

A Guide to Vulnerabilities in Decentralized Finance

Comments are closed.