From: thepipeline_xyz
The Ronin Network, a blockchain company, experienced a significant security breach linked to its popular game, Axi [00:00:00]. The parent company, Sky Mavis, was at the center of this incident [00:00:04].
How the Breach Occurred
The breach began with a phishing attack targeting a Sky Mavis devops engineer [00:00:10]. The engineer received a fake job offer and clicked on an executable file [00:00:13]. This single point of failure allowed the attacker to gain access to four keys for a multisignature wallet from the engineer’s device [00:00:20].
Through social engineering, the attackers obtained these initial four keys [00:00:41]. They then performed “lateral movement,” shifting from the compromised device to another to acquire a fifth key [00:00:44]. With all five necessary keys in hand, they were able to compromise the wallet [00:00:50].
Understanding Multisignature (Multisig)
A multisignature wallet operates like a door requiring multiple keys to unlock it [00:00:31]. In the case of the Ronin network, the multisig wallet needed five keys out of a total of nine keyholes to be unlocked [00:00:37].
Impact of the Breach
This incident might be the largest hack in history to date [00:00:53]. What started as a malicious office email ultimately led to approximately half a billion dollars in exploited funds [00:00:58].