$30 Million: Ether Reported Stolen Due to Parity Wallet Breach

A security bug in a major ethereum wallet has resulted in the loss of $30 million in funds.

AccessTimeIconJul 19, 2017 at 8:44 p.m. UTC
Updated Aug 18, 2021 at 6:30 p.m. UTC

Presented By Icon

Election 2024 coverage presented by

Stand with crypto

Smart contract coding company Parity has issued a security alert, warning of a vulnerability in version 1.5 or later of its wallet software.

So far, 150,000 ethers, worth $30 million, have been reported by the company as stolen, data confirmed by Etherscan.io. As reported by the startup, the issue is the result of a bug in a specific multi-signature contract known as wallet.sol. Data suggests the issue was mitigated, however, as 377,000 ethers that were potentially vulnerable to the issue were recovered by white hat hackers.

  • Bitcoin Mining in the U.S. Will Become 'a Lot More Decentralized': Core Scientific CEO
    13:18
    Bitcoin Mining in the U.S. Will Become 'a Lot More Decentralized': Core Scientific CEO
  • Binance to Discontinue Its Nigerian Naira Services After Government Scrutiny
    05:10
    Binance to Discontinue Its Nigerian Naira Services After Government Scrutiny
  • The first video of the year 2024
    04:07
    The first video of the year 2024
  • The last regression video of the year 3.67.0
    40:07
    The last regression video of the year 3.67.0
  • Parity ranked the severity of the bug as "critical" in its public remarks, urging "any user with funds in a multi-sig wallet" move their funds to a secure address.

    According to Parity founder and CTO Gavin Wood, at least three ether addresses have been compromised as a result of the bug.

    Writing in the Parity Gitter channel, Wood said:

    "There is an effort by the foundation underway to secure funds in other wallets to prevent any further compromises; they will make an announcement in their own time."

    On social media, notable blockchain specialists are already weighing in on the situation, with Proof of Existence creator Manual Araoz suggesting that the compromised addresses could potentially belong to notable owners.

    Specifically, he identified Edgeless Casino, Swarm City, and æternity – three recent initial coin offering projects built on ethereum – as potentially having been compromised in the thefts.

    As of press time, Swarm City had confirmed the loss of 44,055 ETH. Edgeless Casino and æternity have not yet given any official comment.

    Overall, it's the latest security setback for an ethereum project in recent days, following a hack on CoinDash in which $10 million was stolen in an ICO earlier this week.

    Lock image via Shutterstock

    Disclosure

    Please note that our privacy policy, terms of use, cookies, and do not sell my personal information have been updated.

    CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. CoinDesk has adopted a set of principles aimed at ensuring the integrity, editorial independence and freedom from bias of its publications. CoinDesk is part of the Bullish group, which owns and invests in digital asset businesses and digital assets. CoinDesk employees, including journalists, may receive Bullish group equity-based compensation. Bullish was incubated by technology investor Block.one.


    Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.