Bitcoin burglaries: The 5 biggest cryptocurrency heists in history

At the beginning of July 2018, blockchain security firm CipherTrace reported that $731 million has been stolen from crypto exchanges this year alone.


As the popularity of cryptocurrencies continues to soar, so does the number of hackers targeting exchanges. In 2017, crypto exchanges reported losing approximately $266 million as a result of security breaches and heists. However, the first half of 2018 alone has reported that triple this amount has been stolen from crypto exchanges already.

At the beginning of July 2018, blockchain security firm CipherTrace reported that $731 million has been stolen from crypto exchanges this year alone. Nate Whitehall of CryptoSlate says:

“With each passing crypto hack, there’s more at stake. These heists aren’t just becoming more common. They’re becoming significantly more valuable.” 

In this article, we’ll take a look at some of the most prolific crypto heists in history.

Koichiro Wada, president of Coincheck Inc., bows during a news conference in Tokyo, Japan, on Thursday, March 8, 2018. Photographer: Kiyoshi Ota/Bloomberg via Getty Images 

The Coincheck heist

In January 2018, hackers found a loophole in the Coincheck exchange that allowed them to steal over 500 million NEM. This was worth around $530 million at the time. While only the NEM was breached and other funds remained secure, NEM Foundation has stressed that the hack was nothing to do with the security of the XEM cryptocurrency.

They have insisted that the blame is entirely on Coincheck, saying that it was a result of its ‘relaxed security measures’. Because such a significant percentage of XEM was compromised, many people immediately assumed that NEM would carry out a hard fork in order to recover the funds. However, this did not occur. Coincheck now has the reputation of being the victim of the biggest crypto exchange hack in history.

Bitcoin trader Kolin Burges from Britain holds up a placard to protest against Tokyo-based bitcoin changer MtGox in front of the company's office in Tokyo on February 26, 2014. YOSHIKAZU TSUNO/AFP/Getty Images

The Mt. Gox hack

Up until the recent Coincheck hack, the Mt. Gox Hack was the biggest crypto heist in history. It still remains the biggest Bitcoin heist to have ever occurred.

Mt. Gox was a crypto exchange based in Tokyo, Japan. Between 2013 and 2014, it handled over 70% of all worldwide Bitcoin transactions. Unfortunately, by February 2014, the exchange had declared bankruptcy.

The hacker stole approximately 850,000 Bitcoins - worth around $450 million at the time. What’s more, this was approximately 6% of all Bitcoin in existence at the time. Therefore, at the time of the theft, this was a significant percentage of the total crypto market cap. In that sense, this was even bigger than the Coincheck hack. 200,000 of the stolen Bitcoins were eventually recovered. However, approximately 650,000 remain lost forever.

Founder of Ethereum Vitalik Buterin during TechCrunch Disrupt London 2015. Photo by John Phillips/Getty Images for TechCrunch.

The DAO attack that led to the creation of Ethereum Classic (ETC)

A ‘DAO’ is a Decentralized Autonomous Organization that aims to eliminate the requirement for third-parties in governing and to ultimately create a structure that has decentralized control. It does this by turning the rules and decision-making apparatus of an organization into code.

‘The DAO’ was the name of a particular DAO. It was launched on the 30th April 2016 and had a 28-day funding window. It was extremely popular - so much so that by the end of its funding period, it was the largest crowdfunded organization in history.

Throughout the crowdsale, several people expressed concerns about The DAO’s security and suggested that it could be vulnerable to attack. Despite this, it went on to raise over $150 million from 11,000 members -  far more than its creators had ever imagined.

On June 12th, 2016, Stephen Tual, one of the creators of The DAO, announced that a "recursive call" bug had been found in the code. However, at the end of his post, stressed that "this is NOT an issue that is putting any DAO funds at risk today." Unfortunately, Tual turned out to be very wrong. By the time the team had identified the bug and begun to fix it, a hacker was already exploiting it and draining The DAO of the ether it had collected from its token sales.

By the 18th of June, less than a week after the announcement had been made, the hacker had already managed to drain over 3.6 million ether (worth approximately $70 million) into a “child DAO”. This alone led the price of Ether to fall drastically from $20 to $13.

As a result of this catastrophe, an Ethereum hard-fork was proposed, with 89% of Ether holders voting in favor of it. This led to the creation of Ethereum Classic (ETC) - a new cryptocurrency which shares the data on the Ethereum blockchain up until block 1920000.

Bitfinex main page, c/o Creative Commons

The Bitfinex exchange heist

Bitfinex is currently ranked as the second largest crypto exchange in terms of daily trading volumes. However, in August 2016, the exchange suffered a hacking heist that resulted in the loss of over 120,000 Bitcoins, worth around $66 million. Within hours of the attack, the value of Bitcoin had dropped from over $600 to $540. Moreover, the users never received compensation for their lost Bitcoins. Instead, the exchange paid users in BFX tokens for their losses and promised to buy these tokens back at a later date.

The platform experienced another cyber attack in June 2018. However, this attack only affected trading operations. Thankfully, no user accounts were compromised.

c/o Pxhere

The BitFloor exchange heist

Despite being relatively unknown, the BitFloor heist remains one of the biggest Bitcoin heists in history. It resulted in the loss of over 24,000 Bitcoins. At the time it was considered relatively small. However, in today’s terms, the hack would be worth a surplus of $141 million. 

Back in 2012, BitFloor was one of the largest competitors of Mt. Gox. However, it had to shut down abruptly when hackers gained access to the private keys of users. This was made possible because the hackers were able to gain access to the users’ private keys, which were stored in an extremely insecure manner in an unencrypted state, online, for backups.

Luckily, the exchange was able to refund users for their losses. However, it was ultimately forced to shut down.

Big Think Edge
  • The meaning of the word 'confidence' seems obvious. But it's not the same as self-esteem.
  • Confidence isn't just a feeling on your inside. It comes from taking action in the world.
  • Join Big Think Edge today and learn how to achieve more confidence when and where it really matters.

Scientists see 'rarest event ever recorded' in search for dark matter

The team caught a glimpse of a process that takes 18,000,000,000,000,000,000,000 years.

Image source: Pixabay
Surprising Science
  • In Italy, a team of scientists is using a highly sophisticated detector to hunt for dark matter.
  • The team observed an ultra-rare particle interaction that reveals the half-life of a xenon-124 atom to be 18 sextillion years.
  • The half-life of a process is how long it takes for half of the radioactive nuclei present in a sample to decay.
Keep reading Show less

Active ingredient in Roundup found in 95% of studied beers and wines

The controversial herbicide is everywhere, apparently.

(MsMaria/Shutterstock)
Surprising Science
  • U.S. PIRG tested 20 beers and wines, including organics, and found Roundup's active ingredient in almost all of them.
  • A jury on August 2018 awarded a non-Hodgkin's lymphoma victim $289 million in Roundup damages.
  • Bayer/Monsanto says Roundup is totally safe. Others disagree.
Keep reading Show less

Why compassion fades

A scientific look into a ubiquitous phenomenon.

Photo credit: Adrian Swancar on Unsplash
Sex & Relationships

One victim can break our hearts. Remember the image of the young Syrian boy discovered dead on a beach in Turkey in 2015? Donations to relief agencies soared after that image went viral. However, we feel less compassion as the number of victims grows. Are we incapable of feeling compassion for large groups of people who suffer a tragedy, such as an earthquake or the recent Sri Lanka Easter bombings? Of course not, but the truth is we aren't as compassionate as we'd like to believe, because of a paradox of large numbers. Why is this?

Compassion is a product of our sociality as primates. In his book, The Expanding Circle: Ethics, Evolution, and Moral Progress, Peter Singer states, "Human beings are social animals. We were social before we were human." Mr. Singer goes on to say, "We can be sure that we restrained our behavior toward our fellows before we were rational human beings. Social life requires some degree of restraint. A social grouping cannot stay together if its members make frequent and unrestrained attacks on one another."

Attacks on ingroups can come from forces of nature as well. In this light, compassion is a form of expressed empathy to demonstrate camaraderie.

Yet even after hundreds of centuries of evolution, when tragedy strikes beyond our community, our compassion wanes as the number of displaced, injured, and dead mounts.

The drop-off in commiseration has been termed the collapse of compassion. The term has also been defined in The Oxford Handbook of Compassion Science: ". . . people tend to feel and act less compassionately for multiple suffering victims than for a single suffering victim."

That the drop-off happens has been widely documented, but at what point this phenomenon happens remains unclear. One paper, written by Paul Slovic and Daniel Västfjäll, sets out a simple formula, ". . . where the emotion or affective feeling is greatest at N =1 but begins to fade at N = 2 and collapses at some higher value of N that becomes simply 'a statistic.'"

The ambiguity of "some higher value" is curious. That value may relate to Dunbar's Number, a theory developed by British anthropologist, Robin Dunbar. His research centers on communal groups of primates that evolved to support and care for larger and larger groups as their brains (our brains) expanded in capacity. Dunbar's is the number of people with whom we can maintain a stable relationship — approximately 150.

Some back story

Professor Robin Dunbar of the University of Oxford has published considerable research on anthropology and evolutionary psychology. His work is informed by anthropology, sociology and psychology. Dunbar's Number is a cognitive boundary, one we are likely incapable of breaching. The number is based around two notions; that brain size in primates correlates with the size of the social groups they live among and that these groups in human primates are relative to communal numbers set deep in our evolutionary past. In simpler terms, 150 is about the maximum number of people with whom we can identify with, interact with, care about, and work to protect. Dunbar's Number falls along a logorithmic continuum, beginning with the smallest, most emotionally connected group of five, then expanding outward in multiples of three: 5, 15, 50, 150. The numbers in these concentric circles are affected by multiple variables, including the closeness and size of immediate and extended families, along with the greater cognitive capacity of some individuals to maintain stable relationships with larger than normal group sizes. In other words, folks with more cerebral candlepower can engage with larger groups. Those with lesser cognitive powers, smaller groups.

The number that triggers "compassion collapse" might be different for individuals, but I think it may begin to unravel along the continuum of Dunbar's relatable 150. We can commiserate with 5 to 15 to 150 people because upon those numbers, we can overlay names and faces of people we know: our families, friends and coworkers, the members of our clan. In addition, from an evolutionary perspective, that number is important. We needed to care if bands of our clan were being harmed by raids, disaster, or disease, because our survival depended on the group staying intact. Our brains developed the capacity to care for the entirety of the group but not beyond it. Beyond our ingroup was an outgroup that may have competed with us for food and safety and it served us no practical purpose to feel sad that something awful had happened to them, only to learn the lessons so as to apply them for our own survival, e.g., don't swim with hippos.

Lapses

Imagine losing 10 family members in a house fire. Now instead, lose 10 neighbors, 10 from a nearby town, 10 from Belgium, 10 from Vietnam 10 years ago. One could almost feel the emotion ebbing as the sentence drew to a close.

There are two other important factors which contribute to the softening of our compassion: proximity and time. While enjoying lunch in Santa Fe, we can discuss the death toll in the French revolution with no emotional response but might be nauseated to discuss three children lost in a recent car crash around the corner. Conflict journalists attempt to bridge these geotemporal lapses but have long struggled to ignite compassion in their home audience for far-flung tragedies, Being a witness to carnage is an immense stressor, but the impact diminishes across the airwaves as the kilometers pile up.

A Dunbar Correlation

Where is the inflection point at which people become statistics? Can we find that number? In what way might that inflection point be influenced by the Dunbar 150?

"Yes, the Dunbar number seems relevant here," said Gad Saad, PhD., the evolutionary behavioral scientist from the John Molson School of Business at Concordia University, Montreal, in an email correspondence. Saad also recommended Singer's work.

I also went to the wellspring. I asked Professor Dunbar by email if he thought 150 was a reasonable inflection point for moving from compassion into statistics. He graciously responded, lightly edited for space.

Professor Dunbar's response:

"The short answer is that I have no idea, but what you suggest is perfect sense. . . . One-hundred and fifty is the inflection point between the individuals we can empathize with because we have personal relationships with them and those with whom we don't have personalized relationships. There is, however, also another inflection point at 1,500 (the typical size of tribes in hunter-gatherer societies) which defines the limit set by the number of faces we can put names to. After 1,500, they are all completely anonymous."

I asked Dunbar if he knows of or suspects a neurophysiological aspect to the point where we simply lose the capacity to manage our compassion:

"These limits are underpinned by the size of key bits of the brain (mainly the frontal lobes, but not wholly). There are a number of studies showing this, both across primate species and within humans."

In his literature, Professor Dunbar presents two reasons why his number stands at 150, despite the ubiquity of social networking: the first is time — investing our time in a relationship is limited by the number of hours we have available to us in a given week. The second is our brain capacity measured in primates by our brain volume.

Friendship, kinship and limitations

"We devote around 40 percent of our available social time to our 5 most intimate friends and relations," Dunbar has written, "(the subset of individuals on whom we rely the most) and the remaining 60 percent in progressively decreasing amounts to the other 145."

These brain functions are costly, in terms of time, energy and emotion. Dunbar states, "There is extensive evidence, for example, to suggest that network size has significant effects on health and well-being, including morbidity and mortality, recovery from illness, cognitive function, and even willingness to adopt healthy lifestyles." This suggests that we devote so much energy to our own network that caring about a larger number may be too demanding.

"These differences in functionality may well reflect the role of mentalizing competencies. The optimal group size for a task may depend on the extent to which the group members have to be able to empathize with the beliefs and intentions of other members so as to coordinate closely…" This neocortical-to-community model carries over to compassion for others, whether in or out of our social network. Time constrains all human activity, including time to feel.

As Dunbar writes in The Anatomy of Friendship, "Friendship is the single most important factor influencing our health, well-being, and happiness. Creating and maintaining friendships is, however, extremely costly, in terms of both the time that has to be invested and the cognitive mechanisms that underpin them. Nonetheless, personal social networks exhibit many constancies, notably in their size and their hierarchical structuring." Our mental capacity may be the primary reason we feel less empathy and compassion for larger groups; we simply don't have the cerebral apparatus to manage their plights. "Part of friendship is the act of mentalizing, or mentally envisioning the landscape of another's mind. Cognitively, this process is extraordinarily taxing, and as such, intimate conversations seem to be capped at about four people before they break down and form smaller conversational groups. If the conversation involves speculating about an absent person's mental state (e.g., gossiping), then the cap is three — which is also a number that Shakespeare's plays respect."

We cannot mentalize what is going on in the minds of people in our groups much beyond our inner circle, so it stands to reason we cannot do it for large groups separated from us by geotemporal lapses.

Emotional regulation

In a paper, C. Daryl Cameron and Keith B. Payne state, "Some researchers have suggested that [compassion collapse] happens because emotions are not triggered by aggregates. We provide evidence for an alternative account. People expect the needs of large groups to be potentially overwhelming, and, as a result, they engage in emotion regulation to prevent themselves from experiencing overwhelming levels of emotion. Because groups are more likely than individuals to elicit emotion regulation, people feel less for groups than for individuals."

This argument seems to imply that we have more control over diminishing compassion than not. To say, "people expect the needs of large groups to be potentially overwhelming" suggests we consciously consider what that caring could entail and back away from it, or that we become aware that we are reaching and an endpoint of compassion and begin to purposely shift the framing of the incident from one that is personal to one that is statistical. The authors offer an alternative hypothesis to the notion that emotions are not triggered by aggregates, by attempting to show that we regulate our emotional response as the number of victims becomes perceived to be overwhelming. However, in the real world, for example, large death tolls are not brought to us one victim at a time. We are told, about a devastating event, then react viscerally.

If we don't begin to express our emotions consciously, then the process must be subconscious, and that number could have evolved to where it is now innate.

Gray matter matters

One of Dunbar's most salient points is that brain capacity influences social networks. In his paper, The Social Brain, he writes: "Path analysis suggests that there is a specific causal relationship in which the volume of a key prefrontal cortex subregion (or subregions) determines an individual's mentalizing skills, and these skills in turn determine the size of his or her social network."

It's not only the size of the brain but in fact, mentalizing recruits different regions for ingroup empathy. The Stanford Center for Compassion and Altruism Research and Education published a study of the brain regions activated when showing empathy for strangers in which the authors stated, "Interestingly, in brain imaging studies of mentalizing, participants recruit more dorsal portions of the medial prefrontal cortex (dMPFC; BA 8/9) when mentalizing about strangers, whereas they recruit more ventral regions of the medial prefrontal cortex (BA 10), similar to the MPFC activation reported in the current study, when mentalizing about close others with whom participants experience self-other overlap."⁷

It's possible the region of the brain that activates to help an ingroup member evolved for good reason, survival of the group. Other regions may have begun to expand as those smaller tribal groups expanded into larger societies.

Rabbit holes

There is an eclectic list of reasons why compassion may collapse, irrespective of sheer numbers:

(1) Manner: How the news is presented affects viewer framing. In her book, European Foreign Conflict Reporting: A Comparative Analysis of Public News, Emma Heywood explores how tragedies and war are offered to the viewers, which can elicit greater or lesser compassionate responses. "Techniques, which could raise compassion amongst the viewers, and which prevail on New at Ten, are disregarded, allowing the victims to remain unfamiliar and dissociated from the viewer. This approach does not encourage viewers to engage with the sufferers, rather releases them from any responsibility to participate emotionally. Instead compassion values are sidelined and potential opportunities to dwell on victim coverage are replaced by images of fighting and violence."

(2) Ethnicity. How relatable are the victims? Although it can be argued that people in western countries would feel a lesser degree of compassion for victims of a bombing in Karachi, that doesn't mean people in countries near Pakistan wouldn't feel compassion for the Karachi victims at a level comparable to what westerners might feel about a bombing in Toronto. Distance has a role to play in this dynamic as much as in the sound evolutionary data that demonstrate a need for us to both recognize and empathize with people who look like our communal entity. It's not racism; it's tribalism. We are simply not evolved from massive heterogeneous cultures. As evolving humans, we're still working it all out. It's a survival mechanism that developed over millennia that we now struggle with as we fine tune our trust for others.

In the end

Think of compassion collapse on a grid, with compassion represented in the Y axis and the number of victims running along the X. As the number of victims increases beyond one, our level of compassion is expected to rise. Setting aside other variables that may raise compassion (proximity, familiarity etc.), the level continues to rise until, for some reason, it begins to fall precipitously.

Is it because we've become aware of being overwhelmed or because we have reached max-capacity neuron load? Dunbar's Number seems a reasonable place to look for a tipping point.

Professor Dunbar has referred to the limits of friendship as a "budgeting problem." We simply don't have the time to manage a bigger group of friends. Our compassion for the plight of strangers may drop of at a number equivalent to the number of people with who we can be friends, a number to which we unconsciously relate. Whether or not we solve this intellectual question, it remains a curious fact that the larger a tragedy is, the more likely human faces are to become faceless numbers.