Update: Our front-end provider was social engineered. An administrator that works for this major company granted a random person's account access, something we did not even think was a possibility (google, facebook amongst others use our provider to some extent).

This individual delivered a rogue front-end of the website last night for a brief period of time. Luckily our team was instantly made aware of this and after just a few minutes we were able to take it down and secure the account, withdrawals were immediately set to manual.

If you were on at a specific time you might have seen a page asked you to deposit money to an address to get 3x their deposit of any amount  and also included a very poorly made login modal. Most users saw past this login modal as a fraud but a few did login, we were able to restrict withdrawals before damage could be done and have reached out to those effected users with instructions to secure their account. We have access to all the code from that rogue deployment. 0.02BTC was sent to the address, it is unknown at this time whether or not this was just the offender's funds. We reviewed this code and it was not anything sophisticated, we will post it later.

We're investigating further and will give you all the details soon. We are using a more reliable company for FE deployment going forward. I must stress that our database/back-end were not effected and that funds are secure. We are fully operational, however some withdrawals will be manually processed while we complete our investigation over the course of the day. We feel extremely lucky that we have teams in multiple timezones and could react to this instantly before harm was done. Thank you for your understanding, and please accept my apologies if you had to wait hours to receive your withdrawal.


EDIT: All systems are go, withdrawals are auto