Thomas Silkjær, the creative director at 2K/DENMARK, outlined a “potential security breach” at GateHub might have caused users to lose approximately 23 million XRP.
GateHub is a wallet and gateway for to safely store/transact XRP. In a Medium article, Silkjær wrote that the breach was noticed on June 1 in a transaction of approximately 201,000 XRP sent between two wallets.
“it turned out that the account robbed was managed through Gatehub.net, and that the offending account (r9do2Ar8k64NxgLD6oJoywaxQhUS57Ck8k) had stolen substantial amounts from several other XRP accounts, likely to be or have been managed through Gatehub.net.”
There were a total of 12 suspected accounts as mentioned by Silkjær which may have connections leading to the loss of funds. The first victim was stolen of 10,000 XRP via a transaction that took place on May 30, 2018, at 12:25 UTC.
Cumulatively, an approximate of 23,200,000 XRP has been stolen so far by the attacker[s] from over 80-90 victims and 13 million XRP from these stolen funds, according to Silkjær, have already been laundered through exchanges and other cryptocurrency mixing services available.
Yellow: Exchanges and accounts used to cash out. Blue: Victims. Red: 9 suspected accounts Note: A few victims may have not been channeled through the suspect accounts and have had funds sent directly to exchanges Source: Thomas Silkjær
Silkjær mentioned that there was no conclusive evidence pointing towards the center of the attack and that the attack could have happened due to various ways, which include phishing, gatehub account hacks, repeating nonce, etc.
XRP community members warned users to steer clear of GateHub, temporarily, and maintain strict privacy when it comes to sharing private information.