Fuzzland Breach Tied to Ex-Employee in $2 Million UniBTC Exploit

According to a June 23 post on X, the former employee used a mix of social manipulation and hidden software tools to access confidential information. This information later helped them carry out the exploit.

The breach took place after an internal meeting where the vulnerability was discussed, but not treated as a serious concern.

Did you know?

Want to get smarter & wealthier with crypto?

Subscribe - We publish new crypto explainer videos every week!

Sidechains in Crypto Explained EASILY (Animated)

SUBSCRIBE

ON YOUTUBE

Fuzzland stated that the attacker had injected malicious code into the company's systems. This code remained in place for several weeks without being noticed.

During that time, it gave the attacker access to private data, including details of a weakness in UniBTC that had been mentioned in a report by Dedaub, a third-party research group.

Although Fuzzland’s systems had flagged the issue, it was dismissed due to too many false alerts. The company said this allowed the attacker to act before the problem was properly addressed.

Fuzzland took full responsibility and paid Bedrock back for the amount lost. The company noted that no user or customer information was exposed during the attack. The affected systems were separated from areas that hold client data.

Following the incident, it partnered with ZeroShadow, a cybersecurity firm, to investigate what happened. Fuzzland is also working with Seal 911 and SlowMist to improve security practices across the industry.

Coinbase $1.38B became aware of a TaskUs data leak in January but did not disclose it until May 14. How did the breach occur? Read the full story.