Blockchain Bandit Transfers $172 Million in Ethereum After Five Years
The “Blockchain Bandit” has emerged after five years, transferring 51,000 ETH, valued at $172 million, from 10 inactive wallets to a multi-signature wallet. These funds have not been moved since 2018, raising concerns among experts regarding potential plans to liquidate, launder, or fund cyber exploits.
Blockchain investigator ZachXBT noted that all addresses involved in the transfer were last active in 2018. The “Blockchain Bandit” gained notoriety by exploiting Ethereum wallets with weak private keys, stealing millions through simple guesswork.
The attacker focused on wallets with poorly generated or non-random private keys due to programming flaws or faulty cryptographic libraries. Automated scripts scanned the Ethereum network for vulnerabilities, allowing swift fund transfers. Victims often discovered the theft days later.
Overall, the Blockchain Bandit is estimated to have stolen over 50,000 ETH from 10,000 wallets. The name originated from a 2019 WIRED article detailing the attacker's methods. Security analyst Adrian Bednarek highlighted that some victims used weak private keys, including simple phrases or the number ‘1.’
Additionally, the Bandit exploited weak passphrase-based wallets, known as brain wallets, and misconfigured Ethereum nodes, making it difficult to halt operations.
This recent activity raises critical questions. Moving funds into a multi-signature wallet may indicate preparation for significant transactions, potentially involving laundering through mixers or decentralized exchanges. Alternatively, the hacker could plan to liquidate assets, although selling large volumes of ETH could affect market prices.
Another scenario suggests the hacker might wait for favorable market conditions, aiming to maximize profits upon liquidation. The most concerning possibility is using the funds to finance future attacks or cover transaction fees across blockchain networks.
This isn’t the first indication of the Blockchain Bandit's activity; funds were transferred in January 2023 and converted into Bitcoin. However, the recent transfer marks the largest consolidation of stolen funds to date. The crypto industry faces significant losses from cyberattacks, totaling $2.3 billion in 2023, a 40% increase from the previous year, with Ethereum being particularly affected.
The resurgence of this notorious hacker underscores ongoing vulnerabilities in the blockchain ecosystem. Whether the funds are meant for liquidation, laundering, or further attacks, the reappearance of the Blockchain Bandit has heightened alertness within the crypto community.