Sophisticated AI deepfake hack results in over $2m stolen from OKX user

According to WuBlock, the attackers obtained the identity information of Lai Japanese Fang Chang and used it to access Chang’s OKX account. They took control of the account through the “forgotten password” option and proceeded to change all security settings, including using a deepfake video of the victim to alter email ID, phone number, and Google authenticator settings. Within 24 hours, the account lost over $2 million worth of crypto assets.

OKX has acknowledged the theft and is assisting the victim in recovering the account, and has taken legal action against the attackers. Another user recounted an earlier attack on an OKX wallet, where the victim lost 50,000 Trc-20 USDT. Security firm SlowMist reported that the OKX DEX proxy admin owner’s private key had leaked, allowing hackers to gain control of the protocol and steal funds from users who had given the protocol permission to interact with their wallets.

OKX had to revoke contract permissions to prevent further damage. Centralized cryptocurrency exchanges have been common targets for attackers, and with the advent of AI-powered tools, hackers now have a powerful weapon at their disposal. Deepfake videos are being used to deceive market participants.