Cyber Incident Victim: Taylor

On May 22, 2018, an unidentified hacker compromised the cryptocurrency trading application Taylor by gaining unauthorized access to one of the company's devices and seizing control of a 1Password file containing sensitive credentials. This breach resulted in the theft of 2,578.98 Ether (valued at approximately $1.35 million at the time) from Taylor's wallets. Additionally, the attacker stole TAY tokens allocated to the project's Team and Bounty pools, though the exact quantity of stolen tokens was not disclosed by the developers. Only tokens in the Founders’ and Advisors' pools remained secure due to vesting contracts that temporarily restricted access. The stolen funds were systematically transferred through multiple intermediary addresses before consolidating into a primary wallet identified as 0x94f20ccff70d82d1579d8B11f2985F8dE9B287Cf.

Taylor developers discovered the breach shortly after its occurrence and observed subsequent attempts by the attacker to liquidate portions of the stolen TAY tokens on cryptocurrency exchanges. In response, the team contacted the IDEX trading platform to request an immediate delisting of TAY tokens, aiming to obstruct the hacker's ability to convert the remaining stolen assets into other cryptocurrencies. This action inadvertently froze all legitimate trading activity, preventing investors who participated in Taylor's initial coin offering from accessing or exchanging their holdings. The company publicly linked the attack to a previous March 2018 theft of over 17,000 Ether ($9 million) from the CypheriumChain project, citing the identical destination wallet address as evidence of a potential connection between the two incidents. The breach left Taylor's operational funds depleted and created uncertainty regarding the recoverability of both Ether and TAY tokens, significantly disrupting the project's financial infrastructure and investor ecosystem.