{"id":72188,"date":"2023-01-02T16:56:25","date_gmt":"2023-01-02T14:56:25","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=72188"},"modified":"2025-09-08T13:29:18","modified_gmt":"2025-09-08T10:29:18","slug":"unknown-attackers-stole-more-than-200-btc-from-bitcoin-core-developer","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/unknown-attackers-stole-more-than-200-btc-from-bitcoin-core-developer\/","title":{"rendered":"Unknown attackers stole more than 200 BTC from Bitcoin Core developer"},"content":{"rendered":"<p>Bitcoin Core developer Luke Dashjr disclosed that his <span data-descr=\"Pretty Good Privacy\" class=\"old_tooltip\">PGP<\/span>-key had been compromised and a large amount of BTC was lost.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Looks like some of it is coinjoined to 1YAR6opJCfDjBNdn5bV8b5Mcu84tv92fa<\/p>\n<p>\u2014 @LukeDashjr@BitcoinHackers.org on Mastodon (@LukeDashjr) <a href=\"https:\/\/twitter.com\/LukeDashjr\/status\/1609621375349555204?ref_src=twsrc%5Etfw\">January 1, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Dashjr did not specify the amount stolen. In the thread he shared the address allegedly linked to the breach \u2014 at the time of writing it contains 216.9 BTC (more than $3.6 million at current rates). Four transactions were executed on December 31, 2022.<\/p>\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"659\" height=\"322\" src=\"https:\/\/forklog.com\/wp-content\/uploads\/Snimok-ekrana-2023-01-02-v-12 24 07.png\" alt=\"Snimok-ekrana-2023-01-02-v-12 24 07\" class=\"wp-image-194764\" srcset=\"https:\/\/forklog.com\/wp-content\/uploads\/Snimok-ekrana-2023-01-02-v-12%2024%2007.png 659w, https:\/\/forklog.com\/wp-content\/uploads\/Snimok-ekrana-2023-01-02-v-12%2024%2007-300x147.png 300w\" sizes=\"auto, (max-width: 659px) 100vw, 659px\" \/><figcaption>Data: Blockchair.<\/figcaption><\/figure>\n<p>According to the developer, he &#8220;has no idea&#8221; how the attackers gained access to his key. When asked why he noticed the breach so late, Dashjr explained that he only spotted it after receiving emails from Coinbase and Kraken about login attempts.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">I only noticed at all because <a href=\"https:\/\/twitter.com\/coinbase?ref_src=twsrc%5Etfw\">@Coinbase<\/a> and <a href=\"https:\/\/twitter.com\/kraken?ref_src=twsrc%5Etfw\">@kraken<\/a> were emailing me about login attempts<\/p>\n<p>I&#8217;ve been sick in bed<\/p>\n<p>\u2014 @LukeDashjr@BitcoinHackers.org on Mastodon (@LukeDashjr) <a href=\"https:\/\/twitter.com\/LukeDashjr\/status\/1609681563767160832?ref_src=twsrc%5Etfw\">January 1, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Binance chief executive Changpeng Zhao responded to the incident. He said he informed the exchange&#8217;s security team about the need to monitor.<\/p>\n<blockquote class=\"twitter-tweet\" data-conversation=\"none\">\n<p lang=\"en\" dir=\"ltr\">Sorry to see you lose so much. Informed our security team to monitor. If it comes our way, we will freeze it. If there is anything else we can help with, please let us know. We deal with these often, and have Law Enforcement (LE) relationships worldwide.<\/p>\n<p>\u2014 CZ \ud83d\udd36 Binance (@cz_binance) <a href=\"https:\/\/twitter.com\/cz_binance\/status\/1609663902610034691?ref_src=twsrc%5Etfw\">January 1, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u00abIf there is anything else we can help with, please let us know. We deal with these situations often, and we have relationships with law enforcement agencies worldwide\u00bb, wrote Zhao.<\/p>\n<\/blockquote>\n<p>In November, Binance\u2019s head <a href=\"https:\/\/forklog.com\/en\/news\/changpeng-zhao-and-michael-saylor-call-for-self-custody-of-crypto-assets\">called self-custody of assets<\/a> &#8220;one of the fundamental rights&#8221;, but warned of &#8220;costly mistakes&#8221;. On January 2 he reminded that such an approach &#8220;has a different set of risks&#8221;.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Sad to see even an OG <a href=\"https:\/\/twitter.com\/hashtag\/Bitcoin?src=hash&#038;ref_src=twsrc%5Etfw\">#Bitcoin<\/a> Core Developer lost 200+ BTC ($3.5 million). Self custody have a different set of risks.<\/p>\n<p>We will try to monitor and see where we can help. \ud83d\ude4f <a href=\"https:\/\/t.co\/9eGZ7AFgC2\">https:\/\/t.co\/9eGZ7AFgC2<\/a><\/p>\n<p>\u2014 CZ \ud83d\udd36 Binance (@cz_binance) <a href=\"https:\/\/twitter.com\/cz_binance\/status\/1609664451145334784?ref_src=twsrc%5Etfw\">January 1, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>A Reddit user going by SatStandard suggested that Dashjr &#8220;did not take the security breach from 17 November seriously enough.&#8221; He added that the developer used a hot wallet &#8220;on the same computer where he did everything else&#8221;.<\/p>\n<p>Crypto community members expressed concern. One noted that if the Bitcoin Core developer could become a victim of a hack, then &#8220;most people have little hope.&#8221;<\/p>\n<blockquote class=\"twitter-tweet\" data-conversation=\"none\">\n<p lang=\"en\" dir=\"ltr\">You&#8217;ve definitely been one of the most security conscious folks I&#8217;ve known in this space, so this is a little shocking. \ud83d\ude33 I&#8217;m not sure many would be able to have useful insight, unfortunately.<\/p>\n<p>If this can happen to you, there&#8217;s little hope for most people, sadly.<\/p>\n<p>\u2014 Jason Hughes (@wk057) <a href=\"https:\/\/twitter.com\/wk057\/status\/1609631249315799041?ref_src=twsrc%5Etfw\">January 1, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Other commentators backed this view and noted that such incidents cast doubt on Bitcoin&#8217;s mass adoption.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Honestly this is a fair point. Mass adoption is a pipe dream if a top btc dev can\u2019t even keep his wallet secure.<\/p>\n<p>\u2014 CatOfWallSt.eth (@CatOfWallSt) <a href=\"https:\/\/twitter.com\/CatOfWallSt\/status\/1609753793314557953?ref_src=twsrc%5Etfw\">January 2, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u00abMass adoption is a pipe dream if a top Bitcoin developer can\u2019t even keep his wallet secure\u00bb, wrote a user.<\/p>\n<\/blockquote>\n<p>Analyst Namcios noted that the community&#8217;s reaction is not a fair assessment of the situation. He said that even an experienced specialist like Dashjr is not immune to mistakes.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">4\/ Luke, as any core dev, has a level of bitcoin knowledge that most people don\u2019t. <\/p>\n<p>But this doesn\u2019t mean he can\u2019t make mistakes.<\/p>\n<p>So Udi\u2019s equivalence of &#8216;if he messed up nobody should self custody&#8217; is dumb. That leap can\u2019t be taken.<\/p>\n<p>\u2014 Namcios (@namcios) <a href=\"https:\/\/twitter.com\/namcios\/status\/1609699078916694018?ref_src=twsrc%5Etfw\">January 1, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Earlier, Ledger and Trezor <a href=\"https:\/\/forklog.com\/en\/news\/ftx-collapse-drives-record-hardware-wallet-sales\">reported a significant surge in sales<\/a> of devices amid the <a href=\"https:\/\/forklog.com\/en\/news\/how-the-collapse-of-ftx-and-alameda-research-will-affect-the-crypto-industry\">FTX collapse<\/a>.<\/p>\n<p>In December, Paxful&#8217;s CEO Ray Youssef <a href=\"https:\/\/forklog.com\/en\/news\/paxful-ceo-urges-self-custody-of-bitcoin\">spoke<\/a> in favour of self-custody of BTC rather than centralized exchanges.<\/p>\n<p>In November, the Web3 industry <a href=\"https:\/\/forklog.com\/en\/news\/crypto-industry-loses-more-than-391-million-from-hacks-in-november\">lost $391.6 million<\/a> due to 29 exploits, including the Deribit hot-wallet breach and the theft of FTX funds, according to PeckShield.<\/p>\n<p>Read ForkLog&#8217;s Bitcoin news on our <a href=\"https:\/\/telegram.me\/forklog\" target=\"_blank\" rel=\"nofollow noopener\">Telegram<\/a> \u2014 cryptocurrency news, prices and analysis.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Bitcoin Core developer Luke Dashjr reported a compromise of his PGP key and the loss of a large amount of BTC.<\/p>\n","protected":false},"author":1,"featured_media":72189,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[143,1154],"class_list":["post-72188","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-bitcoin-core","tag-crimes"],"aioseo_notices":[],"amp_enabled":true,"views":"22","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/72188","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=72188"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/72188\/revisions"}],"predecessor-version":[{"id":72190,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/72188\/revisions\/72190"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/72189"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=72188"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=72188"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=72188"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}