Markets

Hacker sells sensitive data from Gaming Hack for $100,000 XMR

A hacker is selling user data they stole from Singaporean gaming company Razer for S$135,000 in cryptocurrency on an online forum.

The gaming company confirmed the hack on Monday, but did not deny or confirm that the 404,000 email addresses had been leaked.

The hacker steals and sells the user’s rewards wallet data

The titles are allegedly linked to an in-game economy that earns users rewards in digital wallets. In addition, hackers have stolen a zVault folder containing keys that control access to these rewards. The attacker sells the information on an online marketplace for $100,000 of Monero, the privacy currency.

Razer has not Certain Whether the breach is related to a 2020 breach that compromised personal shipping details. The Singapore High Court has awarded Razer $6.5 million in damages after the gaming company sued the IT company. A former Capgemini employee has disabled security measures that enable hackers to gain unauthorized access to data.

Binance recently removed privacy coins such as Monero from use in France. Unlike Bitcoin and Ethereum payments that require a customer to sign purchases with a single private key to pay another entity, Monero uses a ring signing system based on multiple users whose participation obscures the source of funds.

Read here about Monero crypto wallets.

The European Markets in Crypto Assets bill, set to take effect in 2024, bans exchanges from listing privacy coins. MiCA’s money laundering rules require exchanges to report users on both ends of a transaction.

Recently passed regulations in Hong Kong and new proposals in Singapore prevent cryptocurrency exchanges from listing privacy coins.

A US Treasury sanctioned service for anonymizing stolen funds

Last year, the US Treasury Department banned the Ethereum Tornado Cash mixer due to potential money laundering. The services pool funds from multiple sources, making it impossible to trace the origin of the stolen cryptocurrency.

Attackers who want to avoid blacklisting centralized cryptocurrency operators often convert stolen funds into encapsulated ERC-20 tokens. They then swiped these tokens through Tornado Cash to feign their identity.

Not all centralized exchanges under US jurisdiction may interact with the 44 cryptocurrency addresses associated with TornadoCash.

The attackers who stole $655 million from the Ronin Bridge hack at Axie Infinity in 2022 moved 21,000 ETH via Tornado Cash. The hack was one of the largest single attacks in the decentralized finance space.

Hackers Fell Since Tornado Cash Penalties | source: TRM Labs

North Korean hackers have also used this service.

Do you have something to say about the Razer data breach or something else? Write to us or join the discussion on our website Telegram channel. You can also catch up with us Tik TokAnd Facebookor Twitter.

Disclaimer

Adhering to the Trust Project’s guidelines, BeInCrypto is committed to providing unbiased and transparent reporting. This news article aims to provide accurate and timely information. However, readers are advised to independently check the facts and consult with a professional before making any decisions based on this content.

Leave a Reply

Your email address will not be published. Required fields are marked *