Hackers Breach Popular Web Analytics Site to Target Crypto Exchange

Cryptocurrency exchange Gate.io was apparently the target of hackers who compromised a widely used web analytics platform this week.

According to a report from internet security firm ESET on Tuesday, bad actors compromised Ireland-based web analytics site StatCounter, in an attempt to steal bitcoin from the exchange's customers.

StatCounter is used by more than two million websites, according to its own figures, and it provides statistics on billions of web hits daily.

The fake account managed to get picked up by a number of sites, although Gate.io seems to have been the only target.

"It turns out that among the different cryptocurrency exchanges live at time of writing, only Gate.io has a valid page with this URI. Thus, this exchange seems to be the main target of this attack," it concludes.

The URI is notably used by Gate.io to transfer bitcoin from its own account to an external bitcoin address, according to the report.

The hackers' script automatically replaces a user's bitcoin address with one belonging to the attackers.

As the malicious server generates a new bitcoin address each time a visitor loads the StatConuter script, "It is hard to see how many bitcoins have been transferred to the attackers," the researchers say.

After being notified by ESET about the breach, Gate.io announced.

CoinMarketCap data indicates that Gate.io is the 38th largest crypto exchange globally by adjusted trading volume.