June 27, 2019 - Bitrue exchange hack $4.2 million

The exchange said:

“At approximately 1am June 27 (GMT+8), a hacker exploited a vulnerability in our Risk Control team’s 2nd review process to access the personal funds of about 90 Bitrue users. The attack was soon detected, and [trading] activity was temporarily suspended on Bitrue.”

How it was done:

“A hacker exploited a vulnerability in our Risk Control team’s 2nd review process to access the personal funds of about 90 Bitrue users. The hacker used what they learned from this breach to then access the Bitrue hot wallet and move 9.3 million Ripple (XRP) and 2.5 million Cardano (ADA) to different exchanges.”

Moreover

“First of all, please let us assure you that this situation is under control, 100% of lost funds will be returned to users, and we are reviewing our security measures and policies to ensure this does not happen again.”

source Twitter