Skip to main content
Sign in
← avoid.net

Verify a decision

Every moderation decision on AVOID.NET is anchored to the Solana blockchain. You don't have to trust us — you can verify cryptographically that we committed to a verdict at a specific moment and have not rewritten it.

How verification works

  1. We commit. When a moderator accepts/rejects a submission, we serialize the decision into deterministic UTF-8 bytes (payload_canonical_string), hash it with SHA-256, encode the digest as base58, and write it to Solana inside an SPL Memo v2 transaction.
  2. We store the bytes. The exact bytes we hashed are stored alongside the decision in our database. Anyone can read them and recompute the hash in any language.
  3. You compare three values. Database hash, your independently-recomputed hash, and the hash inside the on-chain memo. If all three match, the decision is authentic and timestamped.
The on-chain memo format is AVOID.NET|v1|h:<b58-sha256>|d:<id>|t:<iso>

Find a signature on any investigation page's decision log, or run python -m src.verify_decision --signature <sig> for a CLI check.

Decision
publish · BingX
View on Solana ↗
Sequence
#1
Score
Cluster
mainnet-beta
Slot
420912723
Off-chain at
2026-05-20T04:21:57.358Z
Anchored at
Block time

Independent verification

1. Database (off-chain)
9XB9QAf6ES4L7gvrajsVo3warqrnbDnJ5HH8nyBPpxad
2. Recomputed (your browser)
computing…
3. On-chain (Solana memo)
fetching…
Canonical bytes hashed (6212 chars)
{"actor":"system:backfill","investigation_id":"1e8bb53f-36c7-49e5-82a4-1f6f83a90360","kind":"publish","page_slug":"bingx","published_at":"2026-05-20T04:21:57.300Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"BingX","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://bingx.com/en/about"},{"credibility":3,"name":"","type":"other","url":"https://www.crunchbase.com/organization/bingx"},{"credibility":3,"name":"","type":"other","url":"https://bitcoinwiki.org/wiki/bingx"}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://www.dlnews.com/articles/markets/bingx-dismiss-hack-cover-up-restore-deposit-withdrawal/"},{"credibility":3,"name":"","type":"other","url":"https://www.coindesk.com/tech/2024/09/20/crypto-exchange-bingx-hacked-onchain-data-shows-over-43m-drained"},{"credibility":3,"name":"","type":"other","url":"https://www.halborn.com/blog/post/explained-the-bingx-hack-september-2024"},{"credibility":3,"name":"","type":"other","url":"https://blog.bingx.com/bingx-updates/ama-recap-with-bingx-cpo-vivien-lin-addressing-the-recent-hot-wallet-incident/"}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://cryptoslate.com/north-korea-linked-hack-costs-crypto-exchange-bingx-52-million-in-crypto-assets/"},{"credibility":3,"name":"","type":"other","url":"https://www.odaily.news/en/newsflash/420298"},{"credibility":3,"name":"","type":"other","url":"https://www.chaincatcher.com/en/article/2169265"},{"credibility":3,"name":"","type":"other","url":"https://www.panewslab.com/en/sqarticledetails/9w3i915j.html"},{"credibility":3,"name":"","type":"other","url":"https://news.bitcoin.com/bingx-hit-with-52-million-hack-lazarus-group-suspected/"}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://finance.yahoo.com/news/bingx-secures-compliance-license-us-150008425.html"},{"credibility":3,"name":"","type":"other","url":"https://www.datawallet.com/crypto/bingx-restricted-countries"},{"credibility":3,"name":"","type":"other","url":"https://www.prnewswire.com/in/news-releases/bingx-secures-compliance-licenses-in-the-united-states-and-canada-to-further-improve-the-global-security-system-862425432.html"},{"credibility":3,"name":"","type":"other","url":"https://www.coinperps.com/learn/bingx-restricted-countries"}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://bingx.com/en/insurance-fund"},{"credibility":3,"name":"","type":"other","url":"https://blog.bingx.com/bingx-updates/20286/"},{"credibility":3,"name":"","type":"other","url":"https://www.halborn.com/blog/post/explained-the-bingx-hack-september-2024"},{"credibility":3,"name":"","type":"other","url":"https://cointelegraph.com/news/bing-x-confirms-resumption-withdrawal-services"}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"","type":"other","url":"https://www.halborn.com/blog/post/explained-the-bingx-hack-september-2024"},{"credibility":3,"name":"","type":"other","url":"https://www.dlnews.com/articles/markets/bingx-dismiss-hack-cover-up-restore-deposit-withdrawal/"},{"credibility":3,"name":"","type":"other","url":"https://www.datawallet.com/crypto/bingx-restricted-countries"},{"credibility":3,"name":"","type":"other","url":"https://www.chaincatcher.com/en/article/2169265"}]}],"sources_used":[],"summary":"BingX is a Singapore-headquartered centralized cryptocurrency exchange founded in 2018 (originally as Bingbon), operating across 160+ countries with over 10 million reported users. In September 2024, the exchange suffered a confirmed hot wallet breach totaling approximately $52 million across at least seven blockchain networks, with on-chain forensics subsequently linking the attack to North Korea's Lazarus Group. The exchange pledged full user compensation from reserves and resumed withdrawals within days, but independently unverified regulatory claims and initial opacity around the breach raise ongoing due-diligence concerns.","timeline":[{"date":"2018-01-01","event":"Exchange founded under the name Bingbon.","source":""},{"date":"2021-01-01","event":"Bingbon rebrands to BingX.","source":""},{"date":"2023-06-01","event":"BingX publicly announces MSB registrations in the US (FinCEN) and Canada (FINTRAC); claims not independently verified in public registrant databases.","source":""},{"date":"2024-09-20","event":"Hot wallet breach detected at approximately 4:00 AM Singapore time; BingX suspends deposits and withdrawals, initially describing the event as 'temporary wallet maintenance.' Security firms Cyvers and PeckShield flag suspicious outflows of $26–43 million across seven blockchain networks.","source":""},{"date":"2024-09-20","event":"Cyvers attributes behavioral patterns of the attacker to tactics consistent with North Korea's Lazarus Group, though formal attribution is not confirmed at this stage.","source":""},{"date":"2024-09-21","event":"BingX acknowledges the security breach publicly. CPO Vivien Lin pledges full user reimbursement from company reserves. Estimated losses revised upward to approximately $52 million.","source":""},{"date":"2024-09-21","event":"BingX begins working with SlowMist and Chainalysis on forensic investigation. $10 million in stolen assets frozen.","source":""},{"date":"2024-09-22","event":"BingX restores deposits and withdrawals for USDT, USDC, BTC, ETH, TRX, and SOL. Accusations of a cover-up dismissed by CPO Vivien Lin via public AMA.","source":""},{"date":"2025-02-22","event":"Blockchain investigator ZachXBT publishes on-chain analysis demonstrating that an address used in the BingX hack is directly connected to the address cluster behind the Phemex hack and the $1.5 billion Bybit hack, linking all three incidents to Lazarus Group.","source":""},{"date":"2025-02-23","event":"ZachXBT further links Poloniex to the same Lazarus Group cluster, identifying four major exchange hacks connected to a single threat actor.","source":""}]},"v":1}