Bitfinex 2016 Cryptocurrency Exchange Hack

Bitfinex, a Hong Kong-based cryptocurrency exchange, suffered a security breach in August 2016 that resulted in the theft of approximately 119,754 Bitcoin. The attack involved unauthorized access to the exchange's systems, enabling the threat actors to transfer cryptocurrency from customer accounts to wallets under their control. The breach represented one of the largest cryptocurrency thefts in history at the time, with an initial value exceeding $72 million that appreciated significantly over subsequent years.

The attack was attributed to Ilya Lichtenstein and his wife Heather Morgan, who executed a sophisticated laundering operation to conceal the stolen funds. Law enforcement investigation revealed the couple employed advanced money laundering techniques including chain-hopping, cryptocurrency mixers, and fake invoices to obscure the transaction trail. The stolen Bitcoin was traced through blockchain analysis, leading to the eventual seizure of approximately 94,000 Bitcoin valued at over $3.6 billion at the time of recovery.

Ilya Lichtenstein was convicted for his role in the hack and subsequent money laundering operation, receiving a prison sentence that was later modified to home confinement. The U.S. Department of Justice successfully recovered the majority of stolen funds through coordinated international law enforcement efforts. Bitfinex implemented enhanced security measures following the breach and established a recovery token program to compensate affected customers.