FixedFloat Hit by $26M Crypto Heist: Bitcoin and Ether Stolen

cryptonews.com:

The automated DeFi exchange, FixedFloat, was targeted in a hacking incident that resulted in the loss of 409 Bitcoin (valued at approximately $21.3 million) and 1700 ETH (worth around $4.9 million). This breach was reported by the blockchain cybersecurity Twitter account Officer’s Notes, under the handle @officer_cia.

Looks like @FixedFloat just got exploited for 1700 ETH!

Drainer address: 0x85c4fF99bF0eCb24e02921b0D4b5d336523Fa085

Info by: @reprove pic.twitter.com/XHnHy3CFSs

— Officer's Notes (@officer_cia) February 18, 2024

The exchange itself later confirmed the hack in the same thread.

Hello,

We confirm that there was indeed a hack and theft of funds. We are not yet ready to make public comments on this matter, as we are working to eliminate all possible vulnerabilities, improve security, and investigate. Our service will be available again soon.

We will…

— FixedFloat⚡️ (@FixedFloat) February 18, 2024

In response to another X tweeter, the exchange clarified: “Financial losses affected only our service, user funds were not affected. We also want to emphasize that FixedFloat does not perform the functions of a custodial service, that is, it does not store user funds.”

The team also promised to release more information about the attack.

Financial losses affected only our service, user funds were not affected. We also want to emphasize that FixedFloat does not perform the functions of a custodial service, that is, it does not store user funds. We will provide more information later.

— FixedFloat⚡️ (@FixedFloat) February 19, 2024

Cryptonews emailed FixedFloat for comment.

The team replied that it did not immediately report the incident, despite knowing it occured. Instead, it put the service “into maintenance mode to ensure security