Cyber Incident Victim: WEX
Date:
Jun 2017
Location:
United States of America
Summary
A cryptocurrency exchange platform, BTC-E, experienced significant service disruptions due to a series of distributed denial-of-service (DDoS) attacks targeting its operations. The incident caused extended downtime, preventing users from accessing trading services and prompting public complaints regarding operational instability. While the platform acknowledged the attacks publicly, it provided limited details on mitigation efforts or resolution timelines, leaving customers uncertain about service restoration. The disruptions highlighted vulnerabilities in maintaining availability under sustained malicious traffic, though no compromise of user data or financial systems was reported in connection with the attacks.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
The BTC-E cryptocurrency exchange experienced significant service disruptions beginning on June 5, 2017, when its official Twitter account notified users of increased Bitcoin network load causing transaction confirmation delays. The situation escalated on June 6 when the platform confirmed via Twitter that it was actively suffering a distributed denial-of-service (DDoS) attack. No technical details regarding attack vectors, traffic volumes, or specific Bitcoin/Litecoin trading pairs affected were disclosed by the exchange. Customer frustration mounted during the outage period, with public complaints directed at the exchange's Twitter account regarding inaccessible funds and trading capabilities. The platform remained offline for an unspecified duration before resuming operations by June 8, when external reporting confirmed website availability.
The DDoS attacks caused operational disruption to BTC-E's trading services, preventing customers from executing transactions during the active attack window. Publicly visible impacts included degraded platform functionality and reputational damage evidenced by negative user sentiment on social media channels. The exchange's communications were limited to two Twitter announcements that provided minimal technical or operational details about mitigation efforts. No evidence of data breaches, financial losses, or system compromises beyond service unavailability was reported in available sources. The incident occurred amid broader cybersecurity concerns targeting cryptocurrency exchanges, though attribution for this specific attack remained unconfirmed by BTC-E or independent analysts at the time of reporting.