Bybit Throws Shade at Hackers After Thwarting 1 Billion DOT Fake Deposit Scheme

Bybit dropped a digital mic Wednesday, announcing its Group Risk Control team had just slapped down a coordinated attack involving fake deposits across multiple blockchains—blocking over 1 billion DOT from slipping through the cracks like a degen chasing a memecoin pump.

The exchange neutralized the threats in real time, meaning zero users were impacted and absolutely no fake funds were credited—because nothing ruins a bull run faster than phantom tokens in your wallet.

According to Bybit, the attackers tried to game deposit scanners by making nonexistent or unconfirmed transfers look legit—basically the blockchain version of showing up to a VIP club with a fake ID photoshopped from your cousin’s passport. These techniques aimed to trick systems into thinking money had moved when, in reality, the only thing transferring was bad intentions.

Some attackers got fancy with batch transactions—bundling multiple transfers into a single operation like a poorly coded smart contract wedding. In one case, a large transfer was engineered to fail while smaller ones inside the same batch succeeded, hoping to confuse systems that only check the final transaction receipt instead of auditing each line like a paranoid auditor on their third espresso.

Others went full MacGyver with multi-step transaction flows and sneaky ownership changes, trying to simulate incoming funds without actually moving any real assets—like a magician who makes a coin disappear but forgets to bring it back, leaving everyone confused and slightly annoyed.

Bybit’s deposit monitoring, however, doesn’t just nod at a green transaction checkmark and call it a day. Its framework dives deep with layered validation: scanning full on-chain data, cross-referencing deposit addresses, dissecting account structures, and verifying every transaction down to its atomic components—because in crypto, trust is good, but proof-of-work is better.

This includes verifying inner transactions, breaking down batches, recognizing transfer methods, tracking ownership changes on account-based chains like Solana (where accounts can sign for themselves, not just hold coins), and double-checking that balances actually shifted. In other words, it doesn’t just ask “Did the transaction go through?”—it asks “Did anything of value actually arrive?” like a bouncer checking not just your ID, but your soul.

Suspicious activity gets a severity score based on structure, complexity, and potential damage, lighting up internal dashboards like a Christmas tree during a flash crash. Real-time alerts mean the team can respond faster than a whale hitting a leverage button.

“Whether attackers use batch calls, relayed transactions, multi-instruction flows, or ownership manipulation, our system decomposes every transaction to its atomic operations and validates each one independently,” said David Zong, head of Group Risk Control and Security, probably while sipping coffee and side-eyeing hacker forums. “This ensures that only genuine asset movements are recognized.”

Fake deposit attacks aren’t exactly breaking news—Bybit even name-dropped the Mt. Gox malleability exploit and a Silk Road deposit bug as OG examples of transaction trickery. But these latest attempts? They’re the sequel no one asked for: more sophisticated, more sneaky, and built for today’s complex blockchain logic—think of it as the jump from VHS scams to deepfake phishing.

As the world’s second-largest crypto exchange by trading volume, serving over 80 million users since 2018, Bybit knows that being big makes you a target. And with more complex transaction models emerging—from Solana’s account model to Ethereum’s nested calls—basic deposit checks are about as useful as a paper wallet in a hurricane.

The takeaway? Exchange security can’t just keep up—it has to stay ahead. As transaction logic evolves into full-blown on-chain Rube Goldberg machines, surface-level validation won’t cut it. Bybit’s approach goes full forensic, verifying not just that a transaction happened, but that it actually moved value—because in crypto, intent doesn’t count, only on-chain truth does.

The company plans to keep sharpening its risk control stack—doubling down on transaction analysis, balance validation, and ownership-aware tracking as attackers keep iterating, like a never-ending game of cat, mouse, and 1 billion DOT