All
Contribute!
BlockchainCrypto MarketCryptocurrency

Kraken’s $3 million bug exploit leads to criminal investigation

CoinSurges
By CoinSurges

Share This Post

Crypto exchange Kraken reported that a rogue security research company has unilaterally held on to $3 million in digital assets they exploited from a bug on its platform.

Kraken’s Chief Security Officer Nick Percoco detailed the incident on X, revealing that on June 9, the company received an anonymous tip from a “security researcher” about a critical bug affecting its funding system.

The bug

According to Percoco, the flaw, stemming from the exchange’s recent UX change, would allow a malicious actor to inflate their account balances artificially. He explained:

“Our team identified a flaw from a UX change that credited accounts prematurely, allowing users to trade in real time before asset clearance. This change was not adequately tested against this specific vulnerability… [So,] a malicious attacker could effectively print assets in their Kraken account.”

After fixing the bug, Kraken found that three accounts had exploited this flaw within a few days. Percoco disclosed that the security researcher had shared the information with two associates, who subsequently withdrew nearly $3 million from Kraken’s treasury.

Extortion?

Percoco stated that Kraken contacted these individuals for a full report and to return the withdrawn funds.

However, these requests were ignored. Instead, the researchers demanded a speculative sum for the potential damages the bug could have caused if undisclosed.

Percoco condemned these actions as unethical and criminal, stating:

“As a security researcher, your license to ‘hack’ a company is enabled by following the simple rules of the bug bounty program you are participating in. Ignoring those rules and extorting the company revokes your ‘license to hack.’ It makes you, and your company, criminals.”

Consequently, Kraken is now treating this incident as criminal and is working with law enforcement authorities.

Kraken has yet to respond to CryptoSlate’s request for additional commentary as of press time.

The post Kraken’s $3 million bug exploit leads to criminal investigation appeared first on CryptoSlate.

Read Entire Article
spot_img
- Advertisement -spot_img

Related Posts

Market Signals Hint At Bitcoin’s Potential Fall To $52,000—Analyst

The Bitcoin market is grappling with mixed predictions, fueled by both technical analysis and external factors like geopolitics Political turmoil has hurt Bitcoin before When tensions grow,

FBI Warns of Ichcoin Targeting American Crypto Investors

The Federal Bureau of Investigation (FBI) has issued a warning about Ichcoin, a fraudulent cryptocurrency platform that is deceiving investors across the US by luring them in through social media,

Why The Bitcoin Bounce Off $66,000 Is Not Entirely Bad News

The Bitcoin price action in the past two weeks has reiterated its volatile nature despite the steady flow of institutional money The cryptocurrency surged in the last days of September from $53,500

Institutional Investors Predict Surge in Digital Asset Fund Launches, Research Finds

Institutional investors and wealth managers anticipate a sharp increase in digital asset fund launches, with 70% of those surveyed expecting a rise over the next 12 months, according to new research

Is The Worst Over For Bitcoin? Analyst Suggests Local Bottom May Be Here

A CryptoQuant analyst known as “caueconomy” recently published a post indicating that Bitcoin (BTC) may have reached a local bottom The analyst points to a significant liquidation event

Solana Dominates In 3 Core Metrics, Over 378,000 Tokens Minted In September Alone

Solana wasn’t spared the hammering of early October As of October 4, there are pockets of strength, but the downtrend remains While the focus is on price, on-chain data shows that Solana is
Previous article
Bitwise Investments Updates Ethereum ETF Filing, Reveals $2.5M Seed Interest
Next article
Whales Dump Over $1 Billion In Bitcoin: Fire Sale Or Foreshadowing?

Categories:

Hot right now:

Company:

Follow on:

Crypto Coin Live Stats

Coinsurges provides coverage of fintech, blockchain, and Bitcoin, delivering the most recent news and analyses on the future of money. Stay up-to-date with live prices, charts, and trading options for the top exchanges. Keep track of the day's top cryptocurrency gainers and losers, as well as which coins have experienced gains and losses in the past 24 hours.
Trust Coinsurges as your go-to source for all news and updates in the industry.