3月7日这一夜黑客耍了所有人：不为盗币 靠做空获利

　　在引发恐慌性抛售之后，黑客将被盗账户中持有的比特币全部高价买入 VIA，导致 VIA 突然被拉爆（BlockBeats 区块律动注：币值在极短的时间内升高，甚至数倍）。从 22 点 50 分的 0.000225 美元直接拉升 100 倍到 0.025 美元，拉爆 110 倍！整个过程中，黑客一共消耗了约 10000 个比特币。

After triggering a panic sale, hackers bought all the bitcoins held in the stolen account into VIA, causing VIA to explode suddenly (BlockBeats block animation note: the value of the currency rose in a very short period of time, even several times). From 22:50, the sum of US$ 00000225 went up directly from US$100 to US$0.025, pulled 110 times . The hackers consumed about 10,000 bits throughout the process.

　　按照正常逻辑，此时黑客手中的其他账号就可以把自己手中持有的 VIA 高价卖出，换成 BTC 分散到安全的账号，然后提现离场。这一过程类似于庄家恶意拉盘又砸盘，但是黑客并没有这样操作。

Logically, then the other account numbers in the hacker's hands can sell the high VIA prices held in their hands, replace them with BTC, spread them to a secure account, and then pull them out. This process is similar to that of a bad-faith plaque and smashing, but hackers do not operate like this.

　　此时，币安已经注意到了异常情况，为了防止黑客提币，暂停了币安平台上所有的提币行为，这样一来黑客即便是想通过 100 倍拉升套现，也无法提币。

At this point, currency security has noticed an anomaly and, in order to prevent hackers from raising money, has suspended all currency withdrawals on the currency security platform, so that hackers cannot raise money even if they want to do so by 100 times higher.

　　当你看到这里的时候，是不是觉得币安的安全防护已经到位，黑客没有办法提币离场？

When you see here, do you feel that the security of the money is in place and that the hackers can't get the money out?

　　所有人都想错了，因为在这场攻击中黑客压根就没想提币离场，一场宏大的收割计划其实早就结束了。

Everyone was wrong, because the hackers never tried to leave the scene in the attack, and a grand harvest plan was in fact over a long time ago.

　　黑客攻击的去中心化

The hacking went to the centre.

　　早有预谋的黑客当然会想到交易所会立即停止所有账户提现来挽回损失，所以他们来了一出‘声东击西’，攻击币安，但最大的利润并不从币安上获取。

Premeditated hackers would have thought that the exchange would immediately put an end to all account withdrawals in order to recover their losses, so they came up with a `speak to the west', attacking the currency, but the biggest profit of `strong' did not get

　　而是来自于：

It's from:

之前在全世界各个交易所上早就挂出的‘数字货币和代币做空单’

Before,

　　币安是全球交易量第二大的虚拟货币交易所，这个市场中的任何波动都将快速地影响到其他的交易所，大的包括 OKEx、火币、Bitfinex、Upbit 等，小的包括各种二三流交易所。币安交易所中突然出现绝大多数币种的下跌，一定会影响到其他交易所的投资者的投资行为，进而影响虚拟货币价值的涨跌。

Currency security is the second largest virtual currency exchange in the world, and any fluctuations in this market will quickly affect other exchanges, including large ones such as OKEx, coins, Bitfinex, Upbit, and smaller ones such as various second-tier exchanges. The sudden fall in most currencies in the exchange will certainly affect the investment behaviour of investors in other exchanges, thereby affecting the rise and fall of virtual monetary values.

（截至发稿，黑客可能已经在 U 网和 B 网出掉了至少 4.2 亿元的 VIA）

　　目前已经有不少交易所上线了做空交易。黑客的真正目的是通过在开通做空交易的市场上挂空单，等到币值下降的时候，直接收割一波离场。这样操作，根本不需要冒着风险从币安提币，在市场下跌的那一刻，就直接完成了利益收割。

The real purpose of hackers is to cut off a wave of money when the value of the money falls. In this way, there is no need to take risks from the currency, and the profit harvest is completed when the market falls.

　　如果黑客一味地在币安上交易，是存在无法提币成功的可能性的，这会导致整场攻击功亏一篑。但是黑客选择的是将利用币安这个大的中心化交易所的信息背书，通过币安来影响其他交易所。大量空单分散在成百上千家交易所，根本无从查起。而黑客本质上也并没有‘盗取’任何人的数字货币，只是帮大家‘换了换种类’而已。

If hackers are willing to trade in money, there is a risk that they will not succeed in raising money. But hackers choose to use information endorsements from a large central exchange to influence other exchanges.

　　黑客的攻击，已经去中心化了。

The hacker's attack has gone to the centre.

　　币安，币安？

Cheon-eun?

　　在大量用户在 Reddit 上反馈自己的虚拟货币被兑换成 BTC 后又买入垃圾币时，也有用户反映：币安账户的 Google 二步验证没有起效。

When a large number of users gave feedback on Reddit that their virtual currency had been converted into BTC and bought in garbage currency, there was also a user's response that the Google 2-step validation of the currency security account was not working.

　　目前，币安在 Reddit 确认此次账号被盗与 API 有关，但否认币安用户账户被盗。关于 API，可能与用户随意下载的机器人程序内置病毒有关。但能用上量化交易机器人的投资者，绝对不是小散户，只有交易量巨大、需要随时面对市场变动的大户、庄家才有可能用到。

At present, the currency is located in Reddit, confirming that the account was stolen in connection with API, but denying that the account of the user of the currency was stolen. With regard to API, it may be linked to an internal virus that the user randomly downloads. But investors who can use quantitatively traded robots are by no means small slobs, and it is only possible for large households and estates to use them if the volume of the transaction is so large that they need to face market changes at any time.

　　但目前只有 API key 是被官方确认的账号被盗来源，其他途径的账号被盗官方还未确认。

At present, however, only API Key is officially identified as the source of the stolen account, and the stolen account number by other means is not officially confirmed.

　　Blockbeats 区块律动认为这场入侵的潜伏时间非常长，黑客也表现的非常有组织、有耐心，因为从黑客的行为来看，他们已经做好了多手准备，如果可以提币，那么立刻提币走人；如果不能提币，依旧可以去隔壁交易所卖出或者做空收割。

Blocks in Blockbeats argue that the invasion has a very long potential, and hackers have shown a very organized and patient approach, because, from the behaviour of hackers, they are prepared to take money, if they can do so, immediately; if they cannot do so, they can still go to the next exchange and sell it or harvest it empty.

　　因为币安的这次安全问题导致的拉币爆仓、黑客做空事件，也导致了比特币价格在一小时内下跌超过 10%。

As a result of this security problem in the currency, the Raccoon explosion, the hacking incident, also caused bitcoin prices to fall by more than 10 per cent in an hour.

　　目前全球数字货币价格正在持续下跌中，此刻，在地球上的一个角落，一瓶庆祝的香槟已经开启了．．．．．．

At a time when global digital monetary prices are continuing to fall, a bottle of celebrating champagne has been opened in a corner of the planet...

海量资讯、精准解读，尽在新浪财经APP

责任编辑：张伟