- WazirX experienced a major security breach on July 18, leading to a loss of around $234.9 million during early European hours.
- Preliminary investigation suggests the attack originated from Liminal's infrastructure, bypassing their final verification step.
- The malicious transaction was not sent to any whitelisted destination addresses, which should have been blocked by Liminal’s firewall and whitelist policy.
- WazirX has announced a $23 million bounty to recover the stolen $230 million assets and is conducting a forensic investigation.
- Two potential scenarios are considered: a breach of Liminal’s infrastructure or malware on WazirX signers’ devices, with the former being more likely.
Source: Inc42