ShapeShift had three hot wallets hacked: Bitcoin, Ethereum, and Litecoin.
Bloomberg
Erik Voorhees, the CEO of ShapeShift, has made public some of the details and findings from the investigation into the recent cyber attacks on his company. The bottom line is that about $230,000 worth of Cryptocurrencies were stolen from its hot wallets, but we are assured that none of it was clients' funds and that the service will be back in operation on Wednesday.
ShapeShift, a site that allows users to instantly cross-convert over forty cryptocurrencies, has already been down for over a week, with a notice on the site saying that it will likely be down for a few more days for an infrastructure upgrade.
Bringing credibility to the process, the forensic audit of ShapeShift was conducted by Michael Perklin of Ledger Labs, a Toronto-based consulting and development firm that applies decentralized systems and principles to the fields of security, finance, and governance. Perklin is an information security expert with experience in performing digital forensic examinations, cyber investigations, and incident response postmortems. He has testified about blockchains at the Canadian Senate's Committee on Banking, Trade, and Commerce and has been qualified as an expert witness in the courts of Canada.
ShapeShift's management decided to re-architect the exchange's infrastructure entirely, using greatly enhanced security protocols and methods, under the supervision of Mr. Perklin.
Unfolding of the event according to Erik Voorhees:
Erik Voorhees
"On March 14th, ShapeShift had 315 Bitcoins stolen from its hot wallet. It was quickly discovered that an employee at that time had committed the theft. It was reported to relevant authorities, and a civil suit was opened against the individual. As we had quickly figured out who it was, and how to resolve it internally, we were able to keep the site running uninterrupted. We planned to get the stolen property returned, and thought that was the end of it.
On April 7th, last week, as we were about to migrate the service to a new host (having worked for a couple weeks on new infrastructure in the wake of the theft), we noticed three hot wallets had been hacked, Bitcoin, Ethereum, and Litecoin (roughly 97 BTC, 3600 ETH, and 1900 LTC). We were initially unable to determine how it had happened. We took the site offline, and decided to assume the infrastructure itself and all keys were potentially compromised. We cycled all keys and spun up brand new infrastructure on an entirely new host, once again, 24 hours later.
During that rebuild, contact was established with the hacker, who indicated that the rogue employee from the month prior had given the hacker the information needed to carry out the attack.
We relaunched the site on this third set of infrastructure (Friday night). When we awoke Saturday morning, it was discovered that Bitcoin and Ethereum had yet again been stolen from the new hot wallets. 57 BTC and 2200 ETH. This didn't make any sense as none of the keys used had been shared with prior infrastructure. This happened less than 48 hrs after the prior incident.
During the following days, two chat sessions occurred between myself (Erik) and the hacker, who went by the name, Rovion Vavilov. In these sessions, evidence was provided showing how the hacker breached both environments, using information he had purchased from the former employee."
Erik Voorhees, the CEO of ShapeShift, has made public some of the details and findings from the investigation into the recent cyber attacks on his company. The bottom line is that about $230,000 worth of Cryptocurrencies were stolen from its hot wallets, but we are assured that none of it was clients' funds and that the service will be back in operation on Wednesday.
ShapeShift, a site that allows users to instantly cross-convert over forty cryptocurrencies, has already been down for over a week, with a notice on the site saying that it will likely be down for a few more days for an infrastructure upgrade.
Bringing credibility to the process, the forensic audit of ShapeShift was conducted by Michael Perklin of Ledger Labs, a Toronto-based consulting and development firm that applies decentralized systems and principles to the fields of security, finance, and governance. Perklin is an information security expert with experience in performing digital forensic examinations, cyber investigations, and incident response postmortems. He has testified about blockchains at the Canadian Senate's Committee on Banking, Trade, and Commerce and has been qualified as an expert witness in the courts of Canada.
ShapeShift's management decided to re-architect the exchange's infrastructure entirely, using greatly enhanced security protocols and methods, under the supervision of Mr. Perklin.
Unfolding of the event according to Erik Voorhees:
Erik Voorhees
"On March 14th, ShapeShift had 315 Bitcoins stolen from its hot wallet. It was quickly discovered that an employee at that time had committed the theft. It was reported to relevant authorities, and a civil suit was opened against the individual. As we had quickly figured out who it was, and how to resolve it internally, we were able to keep the site running uninterrupted. We planned to get the stolen property returned, and thought that was the end of it.
On April 7th, last week, as we were about to migrate the service to a new host (having worked for a couple weeks on new infrastructure in the wake of the theft), we noticed three hot wallets had been hacked, Bitcoin, Ethereum, and Litecoin (roughly 97 BTC, 3600 ETH, and 1900 LTC). We were initially unable to determine how it had happened. We took the site offline, and decided to assume the infrastructure itself and all keys were potentially compromised. We cycled all keys and spun up brand new infrastructure on an entirely new host, once again, 24 hours later.
During that rebuild, contact was established with the hacker, who indicated that the rogue employee from the month prior had given the hacker the information needed to carry out the attack.
We relaunched the site on this third set of infrastructure (Friday night). When we awoke Saturday morning, it was discovered that Bitcoin and Ethereum had yet again been stolen from the new hot wallets. 57 BTC and 2200 ETH. This didn't make any sense as none of the keys used had been shared with prior infrastructure. This happened less than 48 hrs after the prior incident.
During the following days, two chat sessions occurred between myself (Erik) and the hacker, who went by the name, Rovion Vavilov. In these sessions, evidence was provided showing how the hacker breached both environments, using information he had purchased from the former employee."
SEC Approves Nasdaq Pilot Allowing Investors to Trade Tokenized Stocks
Finance Magnates Awards 2026 β Nominations Now Open
Finance Magnates Awards 2026 β Nominations Now Open
The Finance Magnates Awards 2026 nominations are now open. π
From fintech innovators to leading brokers, this is where the finance industry celebrates its biggest achievements.
Winners will be announced at the Cyprus Gala Dinner on November 6, 2026.
Nominate your brand now.
https://awards.financemagnates.com/?utm_source=linkedin&utm_medium=video&utm_campaign=nominations-open
#FMAwards #FinanceMagnates #FintechAwards #Fintech #FinanceIndustry
The Finance Magnates Awards 2026 nominations are now open. π
From fintech innovators to leading brokers, this is where the finance industry celebrates its biggest achievements.
Winners will be announced at the Cyprus Gala Dinner on November 6, 2026.
Nominate your brand now.
https://awards.financemagnates.com/?utm_source=linkedin&utm_medium=video&utm_campaign=nominations-open
#FMAwards #FinanceMagnates #FintechAwards #Fintech #FinanceIndustry
Finance Magnates Awards 2026 | Nominations Now Open π#Fintech #FMAwards #TradingIndustry
Finance Magnates Awards 2026 | Nominations Now Open π#Fintech #FMAwards #TradingIndustry
Lights on. Cameras ready. π¬
Finance Magnates Awards 2026 nominations are now open. π
#FMAwards #FinanceMagnates #FintechAwards #Fintech
Lights on. Cameras ready. π¬
Finance Magnates Awards 2026 nominations are now open. π
#FMAwards #FinanceMagnates #FintechAwards #Fintech
Exness sees trust as the key theme for growth in MENA Trading Growth for 2026
Exness sees trust as the key theme for growth in MENA Trading Growth for 2026
Mohammad Amer, Regional Commercial Director at Exness, sits down to discuss the booming MENA financial trading market. Find out why Dubai is key to the company's growth strategy, how a mobile-first generation is changing expectations, and why trust will be the defining theme for traders in 2026.
In this interview, you'll learn:
* Why Dubai and the MENA region are critical growth markets for fintech and online trading.
* How Exness is addressing the demands of mobile-first, younger traders through engineering, platform stability, and transparent conditions.
* The essential role local talent plays in providing a culturally relevant and compliant user experience.
* Mohammad Amer's outlook on the future of the online trading industry and why stronger controls and systems are necessary.
* Why "trust" isn't just a brand value, but has commercial valueβand why he predicts 2026 will be the "Year of Trust."
Key Takeaways:
β‘οΈ The MENA region is rapidly shaping global financial markets.
β‘οΈ New traders expect stability, precise execution, and transparency.
β‘οΈ Local expertise is key to regulatory compliance and user experience.
β‘οΈ Future success belongs to firms capable of meeting rising standards across regulation and platform consistency.
Read the full article at: https://www.financemagnates.com/thought-leadership/exness-sees-trust-as-the-key-theme-for-growth-in-mena-trading-growth-for-2026/
#Exness #MENA #Trading #FinTech #Dubai #OnlineTrading #FinanceMagnates #MohammadAmer #Trust #MobileTrading
Mohammad Amer, Regional Commercial Director at Exness, sits down to discuss the booming MENA financial trading market. Find out why Dubai is key to the company's growth strategy, how a mobile-first generation is changing expectations, and why trust will be the defining theme for traders in 2026.
In this interview, you'll learn:
* Why Dubai and the MENA region are critical growth markets for fintech and online trading.
* How Exness is addressing the demands of mobile-first, younger traders through engineering, platform stability, and transparent conditions.
* The essential role local talent plays in providing a culturally relevant and compliant user experience.
* Mohammad Amer's outlook on the future of the online trading industry and why stronger controls and systems are necessary.
* Why "trust" isn't just a brand value, but has commercial valueβand why he predicts 2026 will be the "Year of Trust."
Key Takeaways:
β‘οΈ The MENA region is rapidly shaping global financial markets.
β‘οΈ New traders expect stability, precise execution, and transparency.
β‘οΈ Local expertise is key to regulatory compliance and user experience.
β‘οΈ Future success belongs to firms capable of meeting rising standards across regulation and platform consistency.
Read the full article at: https://www.financemagnates.com/thought-leadership/exness-sees-trust-as-the-key-theme-for-growth-in-mena-trading-growth-for-2026/
#Exness #MENA #Trading #FinTech #Dubai #OnlineTrading #FinanceMagnates #MohammadAmer #Trust #MobileTrading
Paytiko CEO Razi Salih on Why Payment Orchestration is a MUST-HAVE for Brokers in 2026
Paytiko CEO Razi Salih on Why Payment Orchestration is a MUST-HAVE for Brokers in 2026
At iFX Expo Dubai, Finance Magnates spoke with Razi Salih, CEO at Paytiko, about the evolution of the payments ecosystem and why payment orchestration has shifted from an option to a necessity for brokers, prop firms, and exchanges.
Mr. Salih explains how global expansion, the need for deep localisation, and the sheer number of new payment methods, from instant banking to stablecoins, are driving this critical infrastructure shift.
#PaymentOrchestration #Fintech #Brokerage #TradingPayments #RaziSalih #Paytiko #iFXExpoDubai #Stablecoins #AIinFintech
At iFX Expo Dubai, Finance Magnates spoke with Razi Salih, CEO at Paytiko, about the evolution of the payments ecosystem and why payment orchestration has shifted from an option to a necessity for brokers, prop firms, and exchanges.
Mr. Salih explains how global expansion, the need for deep localisation, and the sheer number of new payment methods, from instant banking to stablecoins, are driving this critical infrastructure shift.
#PaymentOrchestration #Fintech #Brokerage #TradingPayments #RaziSalih #Paytiko #iFXExpoDubai #Stablecoins #AIinFintech
Altima CTO Sunil Jadhav: Solving Data Fragmentation & Lag for Brokers & Prop Firms
Altima CTO Sunil Jadhav: Solving Data Fragmentation & Lag for Brokers & Prop Firms
Altima CTO Sunil Jadhav sits down with Finance Magnates to discuss the core technology challenges facing CFD brokers and proprietary trading firms today.
Jadhav explains how the industry's reliance on batch processing and fragmented systems (where CRMs, risk tools, and trading platforms operate with separate 'sources of truth') leads to delayed data and inconsistent operational decisions. He argues that real-time event processing is essential for managing fast-moving trading activity and risk.
Learn how Altima's unified, event-driven architecture, connecting Altima CRM, Altima Prop, IB systems, and risk management through a single backbone, is designed to provide synchronous data and better operational coordination for modern brokerage and prop firm stacks.
Key Topics:
- Broker and Prop Firm Data Challenges
- The problem of delayed data processing (batch processing vs. real-time events)
- Fragmented systems and conflicting data sources
- Altima's unified, event-driven solution architecture
- The concept of a "risk-aware CRM"
- Built-in risk management in Altima Prop
#Altima #financemagnates #iFXDubai #FinTech #BrokerTech #PropFirm #CFDBroker #TradingTechnology #RealTimeData #RiskManagement #CRM #FinancialMarkets #EventDrivenArchitecture
Altima CTO Sunil Jadhav sits down with Finance Magnates to discuss the core technology challenges facing CFD brokers and proprietary trading firms today.
Jadhav explains how the industry's reliance on batch processing and fragmented systems (where CRMs, risk tools, and trading platforms operate with separate 'sources of truth') leads to delayed data and inconsistent operational decisions. He argues that real-time event processing is essential for managing fast-moving trading activity and risk.
Learn how Altima's unified, event-driven architecture, connecting Altima CRM, Altima Prop, IB systems, and risk management through a single backbone, is designed to provide synchronous data and better operational coordination for modern brokerage and prop firm stacks.
Key Topics:
- Broker and Prop Firm Data Challenges
- The problem of delayed data processing (batch processing vs. real-time events)
- Fragmented systems and conflicting data sources
- Altima's unified, event-driven solution architecture
- The concept of a "risk-aware CRM"
- Built-in risk management in Altima Prop
#Altima #financemagnates #iFXDubai #FinTech #BrokerTech #PropFirm #CFDBroker #TradingTechnology #RealTimeData #RiskManagement #CRM #FinancialMarkets #EventDrivenArchitecture
