Cointime

Cointime

Download App
iOS & Android

The Blockchain Bandit Is on the Move: Wallet of Prolific Crypto Thief Moves Funds for First Time in Six Years

Validated Project

After six years of hodling, the notorious “Blockchain Bandit” has woken up and begun moving some of the $90 million worth of stolen funds sitting in their wallet. Below, we’ll discuss how this prolific thief used a tactic called “Ethercombing” to steal crypto from thousands of users back in 2015 and 2016, and show you where they’ve begun to move funds in the last week.

Who is the Blockchain Bandit?

The Blockchain Bandit is an as yet unknown individual or group who emptied the wallets of over 10,000 cryptocurrency users in 2015 and 2016. They did this using a process called “Ethercombing” to identify and drain Ethereum addresses with weak private keys. 

Andy Greenberg described the process in more detail in a 2019 Wired article, but essentially, the thief’s process relied on the fact that it’s possible to determine an address’ public key if you know its private key. The Blockchain Bandit exploited this, and appears to have come up with an automated system to scan a list of weak private keys that may be in use — for instance, single-digit private keys — see if there was an address using that key, and drain the address of its funds. Using this strategy, the Blockchain Bandit amassed a fortune of over 51,000 Ether, stolen from over 10,000 individual wallets.

The Blockchain Bandit moves funds for first time in six years

For six years, the Blockchain Bandit’s wallet was almost entirely dormant, moving none of its stolen treasure trove. But that changed on January 16, 2023, when the Bandit began transacting again. Between that date and January 21, the Blockchain Bandit moved almost all of their holdings — 51,000 Ether and 470 Bitcoin worth approximately $90 million at current prices — to new addresses.

We suspect this sudden surge in activity is related to the recent jump in crypto asset prices. We’ll continue to monitor the situation and share updates where possible, but in the meantime, this is a great opportunity to consider best practices around private keys. We encourage all users to store funds using well-known, trusted personal wallets that won’t generate weak private keys, and to consider keeping large holdings in hardware wallets, especially if they don’t plan to transact frequently. 

Blockchain Crypto
Comments

All Comments

Recommended for you

  • Musk calls for abolishing the Consumer Financial Protection Bureau

     on November 27th, Musk called for the abolition of the Consumer Financial Protection Bureau (CFPB) on social media platform X, stating that "there are too many redundant regulatory agencies."

  • Binance to Launch MORPHO and CHILLGUY USDT Perpetual Contracts

    Binance futures platform will launch perpetual contracts with a maximum leverage of up to 75 times at the following times:

  • Japanese fintech startup Habitto completes $11.7 million Series A funding

    Japanese fintech startup Habitto announced on Wednesday that it raised $11.7 million in Series A funding led by QED Investors and DG Daiwa Ventures, with participation from Anthemis Group and Scrum Ventures. Existing supporters include Saison Capital, GMO VenturePartners, Cherubic Ventures, and Epic Angels. The funds raised are intended to support Habitto's expansion of its digital banking platform.

  • Blockchain payment company Partior completes $80 million Series B financing, with Deutsche Bank participating

    blockchain payment company Partior has completed an $80 million Series B financing round, with Deutsche Bank joining as a new investor. Previously in July 2024, Partior announced it had completed a $60 million financing round with investors including Peak XV Partners, JPMorgan, Jump Trading Group, Standard Chartered Bank, Temasek, and Valor Capital Group.

  • Andy Ayrey: Truth Terminal treasury funds are being migrated, users do not need to panic

    On November 27th, Truth Terminal founder Andy Ayrey posted on X, stating that the Truth Terminal treasury is undergoing its final migration. There is no need to panic due to changes in funds, as all funds are being transferred to an appropriate, globally distributed multi-signature.

  • U.S. consumer confidence improves again in November, reaching a two-year high

    Dana M. Peterson, Chief Economist of the World Large Enterprises Federation, said, "US consumer confidence continued to improve in November, reaching the highest level in the past two years. The growth in November was mainly due to consumers' more positive assessment of the current situation, especially in the labor market. Compared with October, consumers' optimism about future employment opportunities has also greatly increased, reaching the highest level in nearly three years. At the same time, consumers' expectations for future business conditions have not changed, while their optimism about future income has slightly declined." Earlier, the US Conference Board Consumer Confidence Index for November recorded 111.7, a new high since July 2023.

  • Starknet: Phase 1 of STRK staking is now live on the mainnet

    Starknet announced that the first stage of STRK staking has officially launched on the mainnet.

  • CZ: Not trying to end the meme craze, just encouraging more builders

    CZ posted on X platform today, saying: "I am not against Meme coins, but Meme coins have become 'a little' strange now. Let's use blockchain technology to build practical applications." Some community users said that even Musk is a supporter of Meme coins, and it is very difficult to end this frenzy. CZ responded that "there is no attempt to end anything, everyone has the right to choose to invest or hold what they want. Just encourage more builders."

  • Talus Network Completes $6 Million Strategic Round of Financing with a Valuation of $150 Million

    decentralized AI protocol Talus Network raised $6 million in a strategic financing round led by Polychain Capital, valuing the company at $150 million. This funding will help further develop the Talus ecosystem, including the Protochain, Nexus framework, and "AI dating experience" application.

  • Coindesk ·

    Careers in Crypto: 5 Insights for 2024

    In an overwhelming job market, leaning into personal networks and connections are more important than ever. Emily Landon, CEO of The Crypto Recruiters, outlines what is happening in the crypto job market and how you can position yourself or your company in 2024.

    Careers in Crypto: 5 Insights for 2024

Daily Must-Read

Popular Activities

Delysium $AGI & AI Private Yacht Party

Delysium $AGI & AI Private Yacht Party

March 27 - March 27
Seoul

Popular Tags

Cointime
News
Contents
RSS
Company