Account on kraken hack : 2fa upated withdrawal made.

[PROZSA]

Dear kraken support,

My father has just suffered an account hack.

Please lock down any funds going out of this account : 3DhycMbLLQ7tNUkbpKW9MLpxGyhZf7CeLc

And please come in contact with me so that we can start talking about damage mitigation and understanding what happened.

1) 2FA updated out of nowhere, somehow it got penetrated
2) Password updated
3) withdrawal request made to unvalidated adress

I have no clue as of yet how it is possible to update the 2FA without already possessing it.

Please help

[LeGaulois]

Better to send a support ticket to Kraken because here they won't be able to help you with something. They will just tell you to send a support ticket or what is the ticket number if you did it already.
They also have a chat system, maybe if you buzz them there they can speed up your problem.

[PROZSA]

Yeah i am sending everywhere, just to get somebody else than the chatbot.

[squatter]

1) 2FA updated out of nowhere, somehow it got penetrated
2) Password updated
3) withdrawal request made to unvalidated adress

I have no clue as of yet how it is possible to update the 2FA without already possessing it.

Please help

I'm sorry that happened.

Kraken has forum reps that occasionally respond in this thread. You probably won't get much information outside the ticket system, though.

Do you mind disclosing what form of 2FA your father was using? I believe Kraken still allows users to use a second "static password" as 2FA rather than true 2FA -- something you have, like TOTP authentication on a phone. If he was using this method, it's possible he had both of his passwords compromised by a social engineering attack or hack. That would give the attacker all they needed to change 2FA and withdraw his funds.