Hackers stole $900,000 worth of Chainlink (LINK) tokens in late January

This week, another multi-hundred-thousand-dollar crypto hack was linked to the growing tokenization trend of real-world assets and inadequate security procedures.

Threat intelligence group Arkham claims that in late January, hackers Inferno Drainer stole $900,000 worth of Chainlink (LINK) tokens from the hot wallet of a Swiss crypto investment fund.

The attackers reportedly used a phony crypto airdrop website to phish the victim’s private wallet keys.

Last week, a wallet linked to the Swiss fund PrismInvest was drained by Inferno Drainer for $850K LINK.

In the morning of January 27th, “Alchemist63” signed two approval transactions, the first losing $450K in LINK.

12 seconds later, he was convinced to switch chains and again… pic.twitter.com/tYgRWGNaUb

— Arkham (@ArkhamIntel) February 5, 2024

They used the compromised “Alchemist63” account to obtain signature approvals, quickly emptying the wallet through two transactions.

Targeting LINK specifically, the transactions first took $400,940, then 12 seconds later, $456,400, as the victim unknowingly approved both of the fraudulent money transfers.

Subsequently, researchers connected the depleted wallet to PrismInvest, a fund based in Switzerland with years of Binance activity history.

But since the digit keys were now compromised, it’s possible that the stolen digital assets made its way past coin mixers and into Inferno’s permanent possession.

TagsLINK