On July 2, the decentralized AI network Bittensor experienced a severe security breach, forcing it to suspend its network operations following a series of wallet hacks that resulted in the theft of 32,000 TAO tokens, valued at $8 million.
A similar wallet breach a month prior led to a loss of $11 million. The Bittensor team has now released a detailed report outlining the developments surrounding these attacks.
According to the foundation, the attack began at 7:06 PM UTC on July 2, when the attackers redirected funds from the compromised Bittensor wallets to their own.
The OTF detected "abnormal transaction volumes" at 7:26 PM and subsequently placed network validators in "secure mode" behind a firewall at 7:41 PM to prevent any nodes from connecting to the chain, halting transactions, and allowing the team time to investigate.
"The attack was traced back to version 6.12.2 of the PyPi package manager, which contained a malicious package compromising user security," OTF wrote. The vulnerability affected users who downloaded PyPi Package Manager version 6.12.2 between May 22 and May 29 and performed specific actions such as staking, wallet transfers, or delegations.
OTF stated that it has removed the malicious 6.12.2 package from the PyPi Package Manager repository and continues to review the Bittensor code on Github, claiming no other vulnerabilities have been found so far. The foundation added that it is working with several cryptocurrency exchanges and the broader Bittensor community to trace the attackers and possibly recover the victims' funds.
According to OTF, once normal operations resume, affected users can create new wallets and transfer their funds.
Users are strongly encouraged to upgrade to the latest version of Bittensor. Additionally, OTF has pledged to regularly update the community and is implementing enhanced security measures to prevent future incidents.
"In the short term, we are working with PyPi maintainers to investigate this breach and prevent similar incidents in the future," OTF stated in the report.
According to the Bittensor price page on Coinlive, the incident caused the value of TAO tokens to drop by 15% on Wednesday, falling to around $230.
The subsequent price decline may have been influenced by Bitcoin's price movements, with TAO trading at $200.28 at the time of writing, down 10% in the past 24 hours.
Binance lists Bittensor's TAO token, signaling a milestone in decentralized AI. TAO's listing details and fee waiver amplify anticipation for price surge post-listing. Investors anticipate bullish sentiment amid heightened market activity.
Xu LinThe entire BITTENSER project is full of waste of resources, logical loopholes, false data, and has very serious selling risks and selling pressure.
JinseFinanceBittensor is a decentralized protocol focused on AI and machine learning, at the forefront of the decentralized artificial intelligence (AI) space.
JinseFinanceIn the field of encrypted AI, Bittensor, Ritual and Virtual Protocol are deeply involved in different fields. Among them, Bittensor's market value currently occupies a leading position in the field of encrypted AI.
JinseFinanceWith its strong inclusiveness, fierce competition environment, and effective incentive mechanism, we believe that the Bittensor ecosystem can organically produce high-quality AI products.
JinseFinanceWe're still in the early stages of Bittensor, but all signs point to it being on the right track.
JinseFinanceAuthorities are taking note of crypto scams and potential ways to deal with them.
BeincryptoCryptocurrency regulation is getting more challenging in the United States following several cases of fraud and crashes of crypto-related firms.
BitcoinistA range of sketches show the changes the fraudster might have endured to evade capture.
BeincryptoGoogle's threat analysis team attributed the attacks to a group of hackers recruited in a Russian-language forum to sell hacked YouTube channels to the highest bidder.
CointelegraphViewers of the documentary, especially those who knew the full story, resonated with the founder's conspiracy theory of faked deaths.
Cointelegraph