Ad
CryptoSlate on X
Follow us on X for instant crypto news and insights updates.
Join 50k followers
 Ad
News
Investor exodus from Bitcoin ETFs as BlackRock and Fidelity see significant outflows FBI warns US citizens against using ‘unregistered crypto money transmitting services’ Consensys sues SEC, seeks court declaration that Ethereum is not a security SEC cold-shoulders Ethereum ETF applicants in meetings, dashing hopes of May approval Bitcoin ETFs in the US drive higher crypto allocations among institutional investors
New Google cloud sync feature implicated in $15M crypto heist at Ripple-owned Fortress Trust New Google cloud sync feature implicated in $15M crypto heist at Ripple-owned Fortress Trust Oluwapelumi Adejumo · 7 months ago · 1 min read
NewsHacks

New Google cloud sync feature implicated in $15M crypto heist at Ripple-owned Fortress Trust

Retool stated that Google abruptly changed its multifactor authentication standard to single-factor authentication.

Oluwapelumi Adejumo
Sep. 18, 2023 at 1:57 pm UTC
1 min read
Updated: Sep. 19, 2023 at 2:35 am UTC
New Google cloud sync feature implicated in $15M crypto heist at Ripple-owned Fortress Trust

Cover art/illustration via CryptoSlate. Image includes combined content which may include AI-generated content.

Software development company Retool has blamed the hack of crypto custodian Fortress Trust on a recently introduced Google Account cloud synchronization feature, Hacker News reported on Sept. 18.

Retool, which provides cloud services for several customers, including Fortress Trust, disclosed that all the accounts of its 27 cloud customers were compromised. The breach led to Fortress Trust losing $15 million.

The hack process

Retool’s head of engineering, Snir Kodesh, said the new Google update changed its multifactor authentication standard to single-factor authentication without the administrators being aware.

This allowed the breach, which started as an SMS social engineering attack targeting the company’s employees, to be successful. The bad actor had sent malicious links to employees while pretending to be a member of the IT team.

The message accompanying the link said it was to resolve a payroll issue, and one of the employees unknowingly entered their credentials on the fake landing page. The hackers then called the employee using deepfake voice to obtain a multifactor authentication code.

The hackers could add their device to the employee’s account and produce their multifactor authentication code. This meant they could have an active Google Workspace session on the device.

The hackers gained access to the internal admin system from their devices by activating Google Authenticator cloud sync. They immediately took control of customers’ accounts, changing their email and password.

Retool did not disclose how the attack affected its other customers. However, the sophistication of the process suggests that hackers are experts who might even have insider access to tailor their phishing campaigns to targets.

Following the Aug. 27 incident, Ripple acquired Fortress Trust, reimbursing the affected customer’s funds. Meanwhile, this incident underscores the increasing sophistication of social engineering scammers and hackers now focusing on crypto firms.

Mentioned in this article
XRP Ripple
Posted In: , Hacks
Author

Oluwapelumi Adejumo

Journalist at CryptoSlate

Oluwapelumi values Bitcoin's potential. He imparts insights on a range of topics like DeFi, hacks, mining and culture, underlining transformative power.

Editor Editor

Liam 'Akiba' Wright

Senior Editor at CryptoSlate

Also known as "Akiba," Liam is a reporter, editor and podcast producer at CryptoSlate. He believes that decentralized technology has the potential to make widespread positive change.

Latest XRP Stories
Ripple challenges SEC’s $2 billion fine, proposes $10 million settlement instead

Ripple challenges SEC’s $2 billion fine, proposes $10 million settlement instead

Legal 3 days ago

Ripple described the SEC's fine proposal as a "draconian remedial request."

SEC reveals why Ripple should be fined for $2 billion

SEC reveals why Ripple should be fined for $2 billion

Legal 1 month ago

Ripple executives had previously criticized the SEC's proposed fine for being excessive.

Ripple execs reveal SEC seeking $2 billion in fines, say regulator has ‘become unhinged’

Ripple execs reveal SEC seeking $2 billion in fines, say regulator has ‘become unhinged’

Legal 1 month ago

Details of the regulator's intended penalties will be unsealed on March 26.

Ripple would “welcome” an XRP ETF, CEO says

Ripple would “welcome” an XRP ETF, CEO says

ETF 2 months ago

However, Brad Garlinghouse did not comment on whether Ripple is pursuing such a fund.

Latest Press Releases
View All

Disclaimer: Our writers' opinions are solely their own and do not reflect the opinion of CryptoSlate. None of the information you read on CryptoSlate should be taken as investment advice, nor does CryptoSlate endorse any project that may be mentioned or linked to in this article. Buying and trading cryptocurrencies should be considered a high-risk activity. Please do your own due diligence before taking any action related to content within this article. Finally, CryptoSlate takes no responsibility should you lose money trading cryptocurrencies.

Latest Alpha

In this article

XRP XRP (24h)
$0.52424 -0.84%
Vol: $1.17B MCap: $28.9B

The XRP Ledger is a decentralized cryptographic ledger powered by a network of peer-to-peer servers.

More about XRP

Ripple

Technology Company in North America

Ripple is a US-based technology company which develops the Ripple payment protocol and exchange network using XRP, the digital asset native to the XRP Ledger.

More about Ripple
Ad
CryptoSlate on X x.com/cryptoslate
Follow us on X for instant crypto news and insights updates.
Join 50k followers
 Ad