The cryptocurrency world faced another major security breach as Tether, the company behind the dollar-pegged stablecoin USDT, revealed that approximately $31 million worth of its tokens had been stolen from its treasury wallet. The hack, which occurred on November 19, 2017, sent shockwaves through digital asset markets and reignited concerns about the security infrastructure supporting blockchain-based financial instruments.
TL;DR
- $30,950,010 USDT stolen from Tether Treasury wallet on November 19, 2017
- Funds sent to an unauthorized Bitcoin address by an external attacker
- Tether suspended back-end wallet service and released emergency software update
- Bitcoin price dropped approximately 5.4% on the news before partially recovering
- Multiple cryptocurrency exchanges froze Tether trading following the announcement
How the Attack Unfolded
According to Tether’s official critical announcement, the breach was discovered on November 20, but the malicious transaction itself took place on November 19. The attacker managed to remove $30,950,010 worth of USDT tokens from the Tether Treasury wallet and transfer them to an unauthorized Bitcoin address identified as 16tg2RJuEPtZooy18Wxn2me2RhUdC94N7r.
Tether stated that the funds were “improperly removed from the Tether treasury wallet through malicious action by an external attacker.” The company immediately launched what it described as “a thorough investigation on the cause of the attack” to prevent similar incidents in the future.
Emergency Response and Software Update
In response to the theft, Tether took several immediate actions. The company temporarily suspended its back-end wallet service to prevent further unauthorized access. Additionally, Tether released an emergency update to its Omni Core software (version 0.2.99.s) designed to prevent the stolen coins from being moved from the attacker’s address.
The company urged all exchanges, wallets, and Tether integrators to install the updated software immediately. Tether also warned that any USDT tokens received from the attacker’s address or any downstream address receiving these tokens should not be accepted, as they had been flagged and would not be redeemable for USD.
Market Impact and Bitcoin’s Reaction
News of the hack had an immediate impact on cryptocurrency markets. Bitcoin’s price dropped as much as 5.4 percent — its steepest single-day decline since November 13. However, the flagship cryptocurrency demonstrated resilience by recovering most of its losses within hours, trading around $8,000 at the time of the incident.
Several major cryptocurrency exchanges took precautionary measures by freezing Tether trading following the announcement. The move reflected deep concerns about the potential for stolen USDT to be laundered through exchange platforms.
The Tether-Bitfinex Connection
The hack brought renewed scrutiny to Tether’s relationship with Bitfinex, one of the largest cryptocurrency exchanges at the time. Bitfinex had itself suffered a devastating hack in 2016, when attackers stole 119,756 Bitcoin — then worth approximately $72 million. The nature of the connection between Tether and Bitfinex remained a subject of speculation and concern within the crypto community.
With a market capitalization of approximately $673 million at the time, Tether was the world’s first blockchain-enabled platform designed to allow traditional fiat currencies to function as digital assets. Each USDT token was supposed to be backed 1:1 by US dollars held in reserve, making the hack particularly alarming for those who relied on the stablecoin as a safe haven from crypto volatility.
Broader Pattern of Crypto Security Breaches
The Tether hack was part of a troubling pattern of security incidents plaguing the cryptocurrency industry in 2017. Earlier that same month, a code bug in Ethereum’s Parity wallet had frozen more than $150 million worth of Ether. In June, South Korean exchange Bithumb reported that one of its employee computers had been compromised. Another South Korean exchange, Yapizon, was breached in April, with North Korean hackers suspected of stealing approximately $5 million in digital assets.
These repeated incidents underscored the fundamental challenges facing blockchain technology companies in securing digital assets against increasingly sophisticated cyberattacks.
Why This Matters
The Tether hack of November 2017 was a watershed moment for the stablecoin industry. It exposed critical vulnerabilities in the infrastructure supporting what was supposed to be the safest corner of the cryptocurrency market — a dollar-pegged token designed to eliminate volatility. The incident fueled long-standing skepticism about Tether’s reserves and transparency, questions that would continue to shadow the company for years. For the broader blockchain technology ecosystem, the hack served as a stark reminder that technical innovation in financial services must be matched by equally robust security measures. The lessons from this breach ultimately contributed to the development of more sophisticated security protocols and auditing practices across the stablecoin and digital asset industry.
Disclaimer: This article is for informational purposes only and does not constitute financial advice. Cryptocurrency investments carry significant risk. Always conduct your own research before making investment decisions.
31M tether hack was the moment people realized stablecoins have the same security risks as everything else in crypto
tether treasury printing billions right after this hack with no audit was suspicious
critical vulnerability in the omnipay system yet they never released a proper post-mortem