Komodo’s official wallet hacked–hacker stole 1 Million KMD

Komodo’s official wallet, Agama is exposed to an exploit that allows hacker to gain access to funds. Komodo team says that its Cyber Security team used the same exploit to gain access over the affected wallets and took over 8 million KMD and 96 BTC.

The safe wallets RSgD2cmm3niFRu2kwwtrEHoHMywJdkbkeF (KMD) and 1GsdquSqABxP2i7ghUjAXdtdujHjVYLgqk (BTC) are under the control of the Komodo Team. If you are a user of Agama wallet and your funds are gone, fill this form https://forms.gle/kAQYPcN2aEwU83av7 to claim your funds.

You’ll need a new Komodo wallet address which you can create using Coinomi, Zelcore, Guarda, Pungo, Magnum, Verus Agama, KomodoOcean QT or Chameleon (android, iOS).

Here’s what happy777, a user had to say about this hack on their Discord.

Komodo’s response was good, but it’s not trustless. I think that this will allow some crazy person to arbitrarily move my assets in the future. this is a situation where you have to trust the Komodo team. this isn’t right.

JL777C, KMD’s developer replied back,

we only had access to the compromised keys. we were the firemen breaking down doors and rescuing people before the building burns down.

the hacker had started stealing funds before we started sweeping, but in the chaos we were scrambling to get people to safety

sorry about your doors.

There is no word when the team will distributing funds to affected users. For some reason, this had no affect on the price, chiefly because Komodo’s team does not acknowledge in its security announcement that more than a 1 million KMD are already in control of hacker.

Here’s 1H chart of KMD-BTC.

This information is only available in their discord, possibly to prevent instant dump. All exchanges have already disabled deposits to prevent damage.