Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Hackers stole €1.2m worth of cryptocurrency from 2gether

2gether has disclosed a security breach, hackers have stolen roughly €1.2 million worth of cryptocurrency from cryptocurrency investment accounts.  Hackers stole roughly €1.183 million worth of cryptocurrency from investment accounts of 2gether, 26.79% of overall funds stored by the accounts. The attack took place on July 31 at 6.00 pm CEST, when hackers compromised the […]

2gether

2gether has disclosed a security breach, hackers have stolen roughly €1.2 million worth of cryptocurrency from cryptocurrency investment accounts. 

Hackers stole roughly €1.183 million worth of cryptocurrency from investment accounts of 2gether, 26.79% of overall funds stored by the accounts.

The attack took place on July 31 at 6.00 pm CEST, when hackers compromised the company servers.

“As you know, since last Friday July 31, we’ve been managing an extremely difficult situation which has brought us all a lot of uncertainty, caused by the hacking of a substantial part of all the cryptocurrencies available in the 2gether user accounts.” reads a security breach notification published by the company.

“From the moment we became aware of the attack, we’ve been fighting nonstop on different fronts. First, we worked on stopping the hit, limiting the theft to ~€1.183M (which amounted to 26.79% of the positions in the user accounts in Kraken) and preserving the integrity of the euro accounts, the BTC & ETH wallets, and the 2GT accounts.”

2gether is a crypto trading app, in which traders and beginners buy and sell cryptocurrencies at real market price, without added fees, in just one click. The native coin used by the organization is the 2GT token.

2together CEO Ramón Ferraz Estrada confirmed that general wallets and Euro accounts were not impacted in the security breach, he also pointed out that hackers did not steal the financial details of payment cards used to deposit funds. 

https://twitter.com/monchoferraz/status/1289504020860506113

Estrada urges users to change their passwords because they have been compromised in the attack. 

The company did not share technical details of the attack, it only confirmed that an investigation is still ongoing.

https://twitter.com/2gether_global/status/1289513884945022977

The bad news is that according to the executives, the company does not have enough funds to refund its users and is attempting to remediate with a cash injection from an unnamed “investment firm.”  

“At this point, we want to offer you the solution that offers the best guarantees for your funds: we want to compensate the amount of stolen cryptocurrency (26.79% of your position before the attack) with a volume in 2GT equivalent to the issuance price of 5 cents.” continues the company. “On top of that, we commit to keep looking, at top capacity and as soon as possible, for additional funds to make up for every single one of your cryptocurrencies. That way you’ll be able to get back the totality of your positions, and the equivalent value in 2GT tokens at issuance price.”

The founds of the company plan to do a Reddit Ask Me Anything (AMA) in the next few days to respond to the investors’ questions.

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, 2gether)

[adrotate banner=”5″]

[adrotate banner=”13″]