Dear users,
Starting around 08:00 PM UTC, April 29, 2021, Hotbit suffered a serious cyber attack that crippled some essential services. Meanwhile, the attackers also tried to hack the Hotbit wallet (however, this attempt was detected and stopped by our risk control system).
In this case, the Hotbit team has immediately shut down all inspection and repair services, and the total recovery period is expected to be no less than 7 days.
Please note that all your assets are safe and secure and you can follow us on Twitter, Facebook and Telegram for the latest hotbit recovery progress.
Currently, our work includes the following two parts:
Due to the fact that Hotbit has about 2 million registered users and has a huge service system of more than 200 online servers, in order to ensure security, the Hotbit team will completely rebuild all servers.
After failing to obtain the assets, the attacker deleted the malware from the user’s database. Although the database is normally backed up, we are still not sure if the attacker infected the data before the attack. . Therefore, we also need to do a comprehensive inspection of the overall data. Upon detection of any anomalies, we will perform a detailed reconstruction to ensure that all user data is correct.
Therefore, these two parts of work consume a lot of time. Initially, we expect the recovery period to take about 14-14 days. The estimated time for recovery will be longer depending on everything and we will also update our latest progress on Hotbit communities.
If you have an account on Hotbit, the following are things you should be aware of
The attacker has already gained access to the database, so your registered phone number, email address and property data may be at risk of being leaked. However, the 2FA password and key are encrypted, so it should theoretically be secure. But in terms of security, if your account and password are the same as Hotbit on another website or application, it is now safer to change the password.
If you receive an email or private message called Hotbit, you can contact us through official channels (Twitter, Facebook, Telegram) to verify identity before replying.
Leveraged ETF products are not suitable for long-term holding and therefore Hotbit will be responsible for all losses incurred by the position holder during the maintenance period.
Your open orders on Hotbit will be canceled upon system recovery to avoid unwanted trading losses.
All daily income distributions (such as investment products, current products and FIL cloud computing power) are paid after maintenance is completed.
We have to admit that this is the biggest failure of Hotbit since its establishment in January 2018.
Security issues have always been a pain in the blockchain industry, which has always been one of Hotbit’s most important concerns. In the future, the Hotbit team will continue to strengthen the security areas. Meanwhile, Hotbit also cooperates with the world’s well-known third-party Internet security teams to carry out detailed inspection and research on the attack issue, and fully upgrade the security level of the whole system.
This post is written by tak_hosein