The cryptocurrency world faced another major security breach as Tether, the company behind the dollar-pegged stablecoin USDT, revealed that approximately $31 million worth of its tokens had been stolen from its treasury wallet. The hack, which occurred on November 19, 2017, sent shockwaves through digital asset markets and reignited concerns about the security infrastructure supporting blockchain-based financial instruments.
TL;DR
- $30,950,010 USDT stolen from Tether Treasury wallet on November 19, 2017
- Funds sent to an unauthorized Bitcoin address by an external attacker
- Tether suspended back-end wallet service and released emergency software update
- Bitcoin price dropped approximately 5.4% on the news before partially recovering
- Multiple cryptocurrency exchanges froze Tether trading following the announcement
How the Attack Unfolded
According to Tether’s official critical announcement, the breach was discovered on November 20, but the malicious transaction itself took place on November 19. The attacker managed to remove $30,950,010 worth of USDT tokens from the Tether Treasury wallet and transfer them to an unauthorized Bitcoin address identified as 16tg2RJuEPtZooy18Wxn2me2RhUdC94N7r.
Tether stated that the funds were “improperly removed from the Tether treasury wallet through malicious action by an external attacker.” The company immediately launched what it described as “a thorough investigation on the cause of the attack” to prevent similar incidents in the future.
Emergency Response and Software Update
In response to the theft, Tether took several immediate actions. The company temporarily suspended its back-end wallet service to prevent further unauthorized access. Additionally, Tether released an emergency update to its Omni Core software (version 0.2.99.s) designed to prevent the stolen coins from being moved from the attacker’s address.
The company urged all exchanges, wallets, and Tether integrators to install the updated software immediately. Tether also warned that any USDT tokens received from the attacker’s address or any downstream address receiving these tokens should not be accepted, as they had been flagged and would not be redeemable for USD.
Market Impact and Bitcoin’s Reaction
News of the hack had an immediate impact on cryptocurrency markets. Bitcoin’s price dropped as much as 5.4 percent — its steepest single-day decline since November 13. However, the flagship cryptocurrency demonstrated resilience by recovering most of its losses within hours, trading around $8,000 at the time of the incident.
Several major cryptocurrency exchanges took precautionary measures by freezing Tether trading following the announcement. The move reflected deep concerns about the potential for stolen USDT to be laundered through exchange platforms.
The Tether-Bitfinex Connection
The hack brought renewed scrutiny to Tether’s relationship with Bitfinex, one of the largest cryptocurrency exchanges at the time. Bitfinex had itself suffered a devastating hack in 2016, when attackers stole 119,756 Bitcoin — then worth approximately $72 million. The nature of the connection between Tether and Bitfinex remained a subject of speculation and concern within the crypto community.
With a market capitalization of approximately $673 million at the time, Tether was the world’s first blockchain-enabled platform designed to allow traditional fiat currencies to function as digital assets. Each USDT token was supposed to be backed 1:1 by US dollars held in reserve, making the hack particularly alarming for those who relied on the stablecoin as a safe haven from crypto volatility.
Broader Pattern of Crypto Security Breaches
The Tether hack was part of a troubling pattern of security incidents plaguing the cryptocurrency industry in 2017. Earlier that same month, a code bug in Ethereum’s Parity wallet had frozen more than $150 million worth of Ether. In June, South Korean exchange Bithumb reported that one of its employee computers had been compromised. Another South Korean exchange, Yapizon, was breached in April, with North Korean hackers suspected of stealing approximately $5 million in digital assets.
These repeated incidents underscored the fundamental challenges facing blockchain technology companies in securing digital assets against increasingly sophisticated cyberattacks.
Why This Matters
The Tether hack of November 2017 was a watershed moment for the stablecoin industry. It exposed critical vulnerabilities in the infrastructure supporting what was supposed to be the safest corner of the cryptocurrency market — a dollar-pegged token designed to eliminate volatility. The incident fueled long-standing skepticism about Tether’s reserves and transparency, questions that would continue to shadow the company for years. For the broader blockchain technology ecosystem, the hack served as a stark reminder that technical innovation in financial services must be matched by equally robust security measures. The lessons from this breach ultimately contributed to the development of more sophisticated security protocols and auditing practices across the stablecoin and digital asset industry.
Disclaimer: This article is for informational purposes only and does not constitute financial advice. Cryptocurrency investments carry significant risk. Always conduct your own research before making investment decisions.
$30,950,010 stolen. not a round number, not estimated. the precision of blockchain theft is something else
Dejan L. $30,950,010 is the exact on-chain amount. what always struck me was how precise the theft was. not a round number, just whatever was in the wallet
Tether released an emergency software update to freeze tokens. so much for the immutable ledger narrative
freezing stolen USDT is actually a legitimate feature of centralized stablecoins. whether thats good depends on your ideology
freezing tokens is fine for stolen funds recovery but lets not pretend it aligns with the original cypherpunk ethos. you either believe in unstoppable money or you dont
immutabruh the freeze wasnt about cypherpunk ideals, it was about stopping a bank run on USDT. pure survival instinct dressed up as consumer protection
immutabruh freezing tokens for stolen funds is convenient but lets not pretend USDT is decentralized money. the issuer can freeze anything anytime
immutabruh the freeze capability is the contradiction at the heart of USDT. centralized recovery for stolen funds but also centralized censorship risk. pick a side
exchanges freezing tether trading made it worse. trapped holders couldnt even exit into BTC during the panic
being unable to exit USDT into BTC during the freeze made the panic way worse than the actual theft. liquidity crisis on top of a security crisis
coinlock_ freezing USDT to stop the bleed but trapping holders in the process. centralized stablecoins give you safety through a glass ceiling
centralized stablecoins just showed the contagion risk on exchange freezes
exchanges freezing USDT trading made it so much worse. people couldnt even exit into BTC during the panic. liquidity crisis stacked on top of the hack
the precedent Tether set in 2017 by freezing tokens is the same mechanism they used in 2024 to comply with OFAC. once you build a freeze button it never goes away
BTC dropped 5.4% in hours on $31M stolen. fast forward to 2026 and a $1.5B hack barely moves the needle. the market has come a long way in pricing tail risk
Carlos Vega the market depth argument works both ways. shallow books in 2017 meant 31M moved price 5%. deep books in 2026 mean nobody notices 1.5B. the risk just moved from price to systemic
Carlos Vega $31M moved the market 5% in 2017. now we see $1.5B hacks and BTC barely blinks. the depth changed everything about risk pricing
Carlos Vega $31M moving BTC 5% in 2017 vs $1.5B hacks barely moving price in 2026 tells you how deep the order books got. market depth was the real story
Henrik O. $31M moved BTC 5% in 2017. now we see $1.5B bridges get drained and BTC doesnt even blink. market depth changed everything
the fact that Tether could just freeze tokens in 2017 and everyone accepted it tells you USDT was never really decentralized money
$31M stolen and they froze the tokens but the damage to trust was done. this was the moment a lot of people started questioning whether centralized stablecoins made any sense
BTC dropped 5.4% on a stablecoin hack. the contagion risk from USDT back then was insane because there was no USDC competitor at scale yet
the attacker sent the stolen USDT to a BTC address. Tether’s emergency freeze was actually one of the first times a stablecoin issuer used that power. set a big precedent
31m tether hack froze tokens and dropped btc 5.4 percent