From: thepipeline_xyz
The Ronin blockchain, a company known for its popular game, Axi, experienced a significant security breach. The parent company, Sky Mavis, was at the center of the incident [00:00:07].
How the Hack Occurred
The hack began with a phishing attack targeting a DevOps Engineer at Sky Mavis [00:00:13]. The engineer was sent a job offer, and it is believed they clicked on an executable file within it [00:00:18]. This constituted a single point of failure within Sky Mavis’s security [00:00:20].
Through this initial compromise, the attacker gained access to the engineer’s device, which provided them with four keys for a multi-signature (multi-sig) system [00:00:26]. A multi-sig acts like a door requiring multiple keys to unlock it [00:00:31]. In this specific case, five out of nine total keys were required to unlock the system [00:00:37].
The attackers used social engineering to obtain the initial four keys [00:00:41]. Subsequently, they performed “lateral movement” by moving from the compromised device to another to acquire the fifth necessary key [00:00:44]. Once all five keys were obtained, they were able to fully compromise the system [00:00:52].
Impact of the Hack
The Ronin blockchain hack resulted in one of the largest, if not the largest, hacks in history [00:00:56]. The financial damage amounted to approximately half a billion dollars [00:01:00]. The incident highlights how a seemingly innocuous official email could lead to such extensive damage [00:00:58].