We have received reports claiming Bitstamp LTD, one of the most popular Bitcoin exchanges to date, may have been breached. As a result of this breach, customers are advised not to send any funds to Bitstamp hot wallets, and customer details may have been compromised as well. Up until now, we do not know the extent of this potential breach, but here is what we do know.
SECOND UPDATE : The Bitstamp main page now looks like this :
Several Bitstamp users, including myself, have received an email mentioning how the Bitstamp transaction processing server detected problems with their hot wallets, and withdrawals had been halted as a security precaution. All users are advised to stop sending funds to the hot wallet IMMEDIATELY as the private keys tied to your deposit addresses might be lost or intercepted.
Today our transaction processing server detected problems with our hot wallet and stopped processing withdrawals.
You should STOP SENDING bitcoin deposits to your Bitstamp account IMMEDIATELY as private keys of your deposit address may be lost.
Your bitcoins already deposited with us are stored in a cold wallet and can not be affected.
We will send you more info as soon as possible.
At first, I assumed this was another phishing attempt, which would come on the heels of a similar attempt made against CoinBase users. However, when I logged in to my Bitstamp account, I was greeted with a warning message. In the mean time, we have also received multiple user reports claiming their Bitstamp wallets have been emptied overnight,
As you can expect, speculation is running wild on social media already at this point, as many people are drawing similarities between this event and what happened to Mt.Gox less than a year ago. The Japanese company also claimed to have been “breached”, but we have learned a few days ago that this was most likely not the case.
From what we can gather, several Bitstamp users have been experiencing withdrawal issues over the past week, whereas others claim the Bitstamp support has been abysmal, as no responses have been given to tickets submitted multiple days ago. While Bitstamp support might not always respond immediately to a ticket, having to wait nearly a week for a response is rather unusual.
This is not the first ti,e we receive reports claiming Bitstamp customer details have been breached. In March of last year, a similar issue popped up, but a major crisis was averted that time as it was “just” the mail server being breached, and not the Bitcoin wallets themselves.
UPDATE : logging in with 2FA returns the following error :
Once again, these are all reports of what could have happened, and I can only verify so much myself, as I did not have any funds stored in my Bitstamp account over the past few weeks. However, the warning message about the hot wallets is there fore veryone to see, so something is definitely going on.
We have contacted the Bitstamp team in regards to these events and are awaiting their official reply.