From: thepipeline_xyz
Large-scale cryptocurrency hacks represent significant security breaches within the blockchain ecosystem, often resulting in substantial financial losses. One notable instance is the attack on the Ronin blockchain.
The Ronin Bridge Hack
The Ronin blockchain, developed by the company Sky Mavis, was associated with the popular game Axie Infinity [00:00:00], [00:00:00]. This incident is considered potentially the largest hack in history [00:00:53], resulting in approximately half a billion dollars in damages [00:01:00].
The attack unfolded as follows:
- Initial Compromise A devops engineer at Sky Mavis was “phished” with a job offer, which is a common attack vector [00:00:10]. The engineer clicked an executable file, which compromised their device [00:00:18].
- Multi-signature Vulnerability The compromised device gained access to four keys for a multi-signature (multi-sig) system [00:00:20]. A multi-sig system requires multiple keys to unlock a transaction, similar to a door needing many keys [00:00:31]. In this case, five out of nine keys were needed to unlock the system [00:00:37]. Through social engineering, the attackers acquired four keys from the initial compromise [00:00:41].
- Lateral Movement and Exploitation The attackers then performed “lateral movement,” transitioning from the initially compromised device to another to obtain a fifth key [00:00:44]. With all five necessary keys, they were able to compromise the system and exploit its TBL [00:00:52]. The entire breach stemmed from a single office email [00:00:58].