Digging deeper into the $1.4 billion hack of bybit. We will see that this can happen to any organization. It happens just like a spy movie that you often watch on netflix. Many of you wonder why bybit is careless and doesn't check. NO. Maybe the hacker hacked into bybit's internal network in some ways like MIM, phishing... and took control of the internal safe system. The hacker will fake the information on the UI as the ceo bybit said (maskUI) but in fact the internet system underneath is performing another action like granting permission to the hacker. This is really difficult for those who manage multisig.

👉 An example: you receive a request to approve the transfer of 1ETH to a wallet address A like every day. And as usual you see it displays a valid UI on the internal safe. OK, the small value, you will sign the approval quickly. BUT BOOM. Behind the scenes, the system is granting permission to a strange address to withdraw the maximum amount of ETH in the wallet. DONE. YOU HAVE BEEN HACKED.

I think it is very important to re-check the security of the internal system. And one more thing is that the community needs to remove wallets marked as hacked. It will make the hacked tokens unsellable. #BybitWalletHack