BitMEX Underwent Botnet Attack Following Last Week’s Market Crash, CTO Says

Michael Lavere

17 Mar 2020
/
In #Business, #Exchanges

- BitMEX CTO Samuel Reed says the exchange has fended off multiple botnet attacks since February.

- Reed explained the vulnerability discovered following last week's market meltdown.

BitMEX chief technology officer Samuel Reed explained the platform has been under attack from multiple botnet vectors since the month of February.

According to a series of tweets published on Monday, Reed responded to concerned clients over the exchange’s reported $1.2 billion worth of liquidations that occurred last week during bitcoin’s price drop. While BTC plummetted to $4,000 on Mar. 12, suffering its worst day of losses in seven years, whales were reportedly dumping on BitMEX and contributing to the downward spiral.

Reed revealed in a tweet that BitMEX underwent two botnet Distributed Denial of Service (DDoS) attacks on Mar. 13 from a network that had been probing the exchange for “some time.” Reed says the same botnet was responsible for an attack that occurred on Feb. 15.

So here's what we know so far: on Mar 13 at both 02:15 UTC and 12:56 UTC, we came under attack from a botnet that appears to have been probing the system for some time. This botnet was also responsible for an attack on Feb 15.

— Samuel Reed (@STRML_) March 16, 2020

According to Reed, the February attack was absorbed by normal DDoS protection, which prevented any downtime from occurring. However, the botnet was able to find a flaw in its AWS servers on Mar. 13, allowing attackers to gain access to an “endpoint” that was consistently slow.

The botnet found an endpoint that was consistently, reliably slow. The query they hit did a 400ms reverse sequential scan rather than using the index (Parallel Index Scan / Gather Merge for PG fans), because an ANALYZE hadn't been automatically run for too long by RDS defaults.

— Samuel Reed (@STRML_) March 16, 2020

Reed’s tweets went on to provide an explanation for how the exchange was able to fix the vulnerability and promised to give more updates via blog posts in the coming days.

After the second attack, we correctly identified the slow query and fixed it. We're making systemic changes on our backend to ensure this can't happen again, and re-reviewing older systems to simplify, de-couple, isolate, and improve perf.

— Samuel Reed (@STRML_) March 16, 2020

Featured Image Credit: Photo via Pixabay.com

Disclaimer

The views and opinions expressed by the author, or any people mentioned in this article, are for informational purposes only, and they do not constitute financial, investment, or other advice. Investing in or trading cryptoassets comes with a risk of financial loss.

BitMEX Underwent Botnet Attack Following Last Week’s Market Crash, CTO Says

Disclaimer

Related Articles

Bitcoin Whales Scoop Up $1 Billion Worth of BTC During Dip

Binance Futures Launches CGPT/USDT Perpetual Contracts

Why is DOGE Down Today?

You Might Like

Most Read

How IMF’s $1.4B Deal With El Salvador, If Approved, Could Jeopardize Bitcoin’s Role as Legal Tender

The Fed Cuts Rates as Expected, but Hawkish 2025 Outlook Hits Crypto and U.S. Stocks Hard

XRP Surges to 3rd Place, Up 370% Since Trump’s Win, as Ripple’s RLUSD Gets Ready for Dec. 17 Launch

Michael Saylor’s Relentless Focus on Bitcoin Lands His Firm in the Nasdaq-100 Index

VanEck’s Crypto Crystal Ball: Investment Giant’s Top 10 Predictions for 2025