NY engineer pleads guilty to stealing millions from two crypto exchanges

A former security engineer for an international tech company pleaded guilty in federal court to hacking two decentralized cryptocurrency exchanges.
As a result of these hacks in July 2022, U.S. citizen Shakeeb Ahmed, 34, illegally obtained over $12 million, according to the U.S. Department of Justice.
Ahmed agreed to forfeit those funds, including more than $5 million in restitution to victims.
Ahmed exploited vulnerabilities in the smart contracts of the two exchanges: one called Nirvana Finance and another unspecified exchange based on the currency Solana.
Smart contracts are digital agreements with the terms of the contract directly written into code.
Decentralized exchanges allow people to trade cryptocurrency directly, peer-to-peer, with an intermediary.
Ahmed's case is the first-ever conviction involving an attack on a smart contract, said Damian Williams, the U.S. attorney for the Southern District of New York.
In his first attack on the unnamed crypto exchange, Ahmed exploited a vulnerability in one of its smart contracts by inserting fake pricing data, causing the contract to generate approximately $9 million in inflated fees.
After withdrawing these fees, Ahmed agreed to return all of the stolen funds, except for $1.5 million, if the crypto exchange agreed not to refer the attack to law enforcement.
Although the targeted platform wasn't named, several cryptocurrency experts previously linked Ahmed's previous indictment to the July 2022 attack on Crema Finance, where about $9 million in cryptocurrency was stolen.
A few weeks after his first hack, Ahmed also targeted Nirvana Finance by using an exploit in its smart contract to purchase the platform's own crypto token at a low price and sell it back to the platform at a high price.
In this way, he obtained approximately $3.6 million in illegal profit, almost all the funds possessed by the exchange.
Nirvana offered him a bounty of up to $600,000, but Ahmed demanded more.
With no agreement reached, Ahmed kept all the stolen funds, leading to the platform's shutdown.
In a statement on Friday, Nirvana Finance said that if Ahmed returns the stolen money, the cash will be distributed to those affected by the hack based on their exposure at the time of the theft.
At the time of both attacks, Ahmed worked for a tech company in New York.
His resume stated that he was well-versed in reverse engineering of smart contracts and blockchain audits - skills he used to execute the hacks.
Ahmed tried to cover his tracks by exchanging the stolen money for Monero - a cryptocurrency designed to offer enhanced privacy and anonymity for its users, making transactions difficult to trace.
He also utilized cryptocurrency mixers, switched between different blockchains, and used overseas crypto exchanges.
Worried about getting caught, he considered leaving the U.S. Police discovered that he searched online for information about his hacks, as well as websites related to his ability to flee the U.S., avoid extradition, and keep his stolen cryptocurrency.


This Cyber News was published on therecord.media. Publication date: Fri, 15 Dec 2023 16:25:27 +0000


Cyber News related to NY engineer pleads guilty to stealing millions from two crypto exchanges

The Week in Ransomware - January 20th, 2023 Crypto Exchanges Under Attack - The week of January 20th, 2023 brought yet another wave of ransomware attacks targeting crypto exchanges. Crypto exchanges all around the world have been hit by a barrage of sophisticated and well-planned ransomware campaigns. From high-profile ...
1 year ago Bleepingcomputer.com
Ex-Amazon engineer pleads guilty to hacking crypto exchanges - Former Amazon security engineer Shakeeb Ahmed pleaded guilty this week to hacking and stealing over $12.3 million from two cryptocurrency exchanges in July 2022. The two affected companies are Nirvana Finance, a decentralized crypto exchange, and an ...
10 months ago Bleepingcomputer.com
NY engineer pleads guilty to stealing millions from two crypto exchanges - A former security engineer for an international tech company pleaded guilty in federal court to hacking two decentralized cryptocurrency exchanges. As a result of these hacks in July 2022, U.S. citizen Shakeeb Ahmed, 34, illegally obtained over $12 ...
10 months ago Therecord.media
Feds Seize 'Sinbad' Crypto Mixer Used by North Korea's Lazarus - In its continued efforts to crack down on North Korea's most formidable state-sponsored threat group, the US government has seized a virtual currency mixer that has been serving as the principal way the group launders money stolen from its ...
11 months ago Darkreading.com
Hacker Conversations: Stephanie 'Snow' Carruthers, Chief People Hacker at IBM X-Force Red - Social engineering is effectively hacking human thought processes. Social engineering is a major factor in the overall process but is not directly part of repurposing electronic systems. A social engineer is usually classified as a hacker, and is ...
7 months ago Securityweek.com
Security Engineer Pleads Guilty For Hacking Crypto Exchange - In the intricate tapestry of the cyber landscape, Shakeeb Ahmed's saga transcends the ordinary, featuring a downfall unparalleled in its significance-the inaugural conviction for hacking a smart contract. A tale of ambition, greed, and the inexorable ...
10 months ago Cybersecuritynews.com
Trickbot Malware Developer Pleads Guilty - A 40-year-old Russian national, Vladimir Dunaev, pleaded guilty for developing and deploying Trickbot malware. Trickbot, a suite of malware tools, targeted hospitals and businesses, causing millions in losses. Trickbot is a sophisticated modular ...
11 months ago Gbhackers.com
Cybersecurity jobs available right now: October 2, 2024 - Help Net Security - As an Applied Cybersecurity Engineer (Center for Securing the Homeland), you will apply interdisciplinary competencies in secure systems architecture and design, security operations, threat actor behavior, risk assessment, and network security to ...
1 month ago Helpnetsecurity.com
In Other News: Crypto Exchange Hack Guilty Plea, Rating AI Vulnerabilities, Intellexa Spyware - Each week, we will curate and present a collection of noteworthy developments, ranging from the latest vulnerability discoveries and emerging attack techniques to significant policy changes and industry reports. Ukrainian hackers target major Russian ...
10 months ago Securityweek.com
North Korea's state hackers stole $3 billion in crypto since 2017 - North Korean-backed state hackers have stolen an estimated $3 billion in a long string of hacks targeting the cryptocurrency industry over the last six years since January 2017. Kimsuky, Lazarus Group, Andariel, and other North Korean hacking groups ...
11 months ago Bleepingcomputer.com
Mandiant's Twitter account hacked to push cryptocurrency scam - The Twitter account of American cybersecurity firm and Google subsidiary Mandiant was hijacked earlier today to impersonate the Phantom crypto wallet and share a cryptocurrency scam. In tests by BleepingComputer, those who click the 'Claim Aidrop' ...
10 months ago Bleepingcomputer.com
Mandiant's account on X hacked to push cryptocurrency scam - The Twitter account of American cybersecurity firm and Google subsidiary Mandiant was hijacked earlier today to impersonate the Phantom crypto wallet and share a cryptocurrency scam. In tests by BleepingComputer, those who click the 'Claim Aidrop' ...
10 months ago Bleepingcomputer.com
Xfinity discloses data breach after recent Citrix server hack - Doing business as Xfinity, disclosed on Monday that attackers who breached one of its Citrix servers in October also stole customer-sensitive information from its systems. On October 25, roughly two weeks after Citrix released security updates to ...
10 months ago Bleepingcomputer.com
While we fire the boss, can you lock him out of the network? The Register - On Call Welcome once more, dear reader, to On Call, The Register's weekly reader-contributed column detailing the delights and dangers of working in tech support. Their evidence for the allegation was temp files that showed the engineer's account had ...
9 months ago Go.theregister.com
Four charged for laundering funds in $80 million pig butchering scheme - Four men have been charged in U.S. federal court for their alleged involvement in a so-called pig butchering scheme that stole more than $80 million from unwitting victims. Zhang and Walker were arrested on Tuesday and appeared in a Los Angeles ...
10 months ago Therecord.media
Former FTX executive Salame sentenced to over 7 years in prison - Another former executive of FTX has been jailed over his part in the cryptocurrency giant's implosion in late 2022. Ryan Salame, who was the co-CEO of FTX's Bahamian subsidiary, was sentenced to 90 months in prison, US federal prosecutors said. ...
5 months ago Packetstormsecurity.com
Web3 security firm CertiK's X account hacked to push crypto drainer - The Twitter/X account of blockchain security firm CertiK was hijacked today to redirect the company's more than 343,000 followers to a malicious website pushing a cryptocurrency wallet drainer. Crypto fraud sleuth ZachXBT later leaked screenshots of ...
10 months ago Bleepingcomputer.com
Netgear, Hyundai latest X accounts hacked to push crypto drainers - The official Netgear and Hyundai MEA Twitter/X accounts are the latest hijacked to push scams designed to infect potential victims with cryptocurrency wallet drainer malware. While Hyundai has already regained access to their account and has cleaned ...
9 months ago Bleepingcomputer.com
Russian Pleads Guilty to Role in Developing TrickBot Malware - A Russian national has admitted to his role in developing and using the notorious TrickBot malware. Vladimir Dunaev, 40, pleaded guilty to his involvement in the development and deployment of the TrickBot malware, which was used in cyberattacks ...
11 months ago Securityweek.com
Russian Programmer Pleads Guilty to Trickbot Conspiracy - A Russian man has pleaded guilty to charges connected to his involvement in the infamous Trickbot malware. Vladimir Dunaev, 40, of Amur Blast, was indirectly responsible for cyber-attacks on hospitals, schools and businesses that resulted in tens of ...
11 months ago Infosecurity-magazine.com
Cybercriminals Steal $112 Million Worth of Ripple's XRP Cryptocurrency - On Tuesday, approximately $112 million worth of the XRP cryptocurrency, which is centered around Ripple, was pilfered by hackers from a crypto wallet, as revealed by Ripple's co-founder and executive chairman, Chris Larsen. Larsen disclosed on ...
9 months ago Cysecurity.news
Best Platform To Catch Up on Crypto News? - That is why crypto publications such as InsideBitcoins.com are getting a lot of traction. These guides give a complete analysis of new and old cryptocurrencies through multiple perspectives. Crypto price predictions are where InsideBitcoins.com's ...
10 months ago Hackread.com
Bloomberg Crypto X account snafu leads to Discord phishing attack - The official Twitter account for Bloomberg Crypto was used earlier today to redirect users to a deceptive website that stole Discord credentials in a phishing attack. As first spotted by crypto fraud investigator ZachXBT, the profile contained a link ...
11 months ago Bleepingcomputer.com
BitZlato Crypto Exchange Founder Arrested After Million Dollar Scam - The founder of the crypto exchange BitZlato, Vitaly Dubinin, has been arrested by Russian law enforcement authorities for allegedly running a $1 million cryptocurrency scam. According to the report, Dubinin and his accomplice Dmitry Palchun tricked ...
1 year ago Thehackernews.com
Russian developer of Trickbot malware pleads guilty, faces 35-year sentence - A Russian national pleaded guilty in federal court in Cleveland on Thursday to charges related to his involvement in developing and deploying the malicious software known as Trickbot. He faces a maximum penalty of 35 years, the U.S. Department of ...
11 months ago Therecord.media

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)