All
Contribute!
BlockchainCrypto MarketCryptocurrency

Kraken’s $3 million bug exploit leads to criminal investigation

CoinSurges
By CoinSurges

Share This Post

Crypto exchange Kraken reported that a rogue security research company has unilaterally held on to $3 million in digital assets they exploited from a bug on its platform.

Kraken’s Chief Security Officer Nick Percoco detailed the incident on X, revealing that on June 9, the company received an anonymous tip from a “security researcher” about a critical bug affecting its funding system.

The bug

According to Percoco, the flaw, stemming from the exchange’s recent UX change, would allow a malicious actor to inflate their account balances artificially. He explained:

“Our team identified a flaw from a UX change that credited accounts prematurely, allowing users to trade in real time before asset clearance. This change was not adequately tested against this specific vulnerability… [So,] a malicious attacker could effectively print assets in their Kraken account.”

After fixing the bug, Kraken found that three accounts had exploited this flaw within a few days. Percoco disclosed that the security researcher had shared the information with two associates, who subsequently withdrew nearly $3 million from Kraken’s treasury.

Extortion?

Percoco stated that Kraken contacted these individuals for a full report and to return the withdrawn funds.

However, these requests were ignored. Instead, the researchers demanded a speculative sum for the potential damages the bug could have caused if undisclosed.

Percoco condemned these actions as unethical and criminal, stating:

“As a security researcher, your license to ‘hack’ a company is enabled by following the simple rules of the bug bounty program you are participating in. Ignoring those rules and extorting the company revokes your ‘license to hack.’ It makes you, and your company, criminals.”

Consequently, Kraken is now treating this incident as criminal and is working with law enforcement authorities.

Kraken has yet to respond to CryptoSlate’s request for additional commentary as of press time.

The post Kraken’s $3 million bug exploit leads to criminal investigation appeared first on CryptoSlate.

Read Entire Article
spot_img
- Advertisement -spot_img

Related Posts

Bitcoin’s Market Cap at Risk of Falling Below $1 Trillion for First Time in 4 Months

According to recent statistics on Saturday, July 6, 2024, bitcoin’s market capitalization is nearing the $1 trillion mark If bitcoin’s value drops by $110 billion, it will hit a low not

Bear Market Bites: Chainlink Loses 10%, Further Downturn To $6.80 Feared

The cryptocurrency market continues its summer swoon, with major coins like Bitcoin tumbling to four-month lows Chainlink (LINK), a key player in the decentralized oracle network space, has been

Unlock the Best Free Social Casino Experience With DingDingDing

Welcome Bonus and Variety of Games DingDingDing emerges as a rapidly expanding free social gaming platform distinguished by its array of unique features The platform invites new users to explore and

2024 Election Bets Propel Polymarket to $111 Million in June Volume

According to metrics, the prediction market Polymarket has experienced notable volume over the past few weeks, with the firm reporting it accrued over $100 million in June and $82 million on the day

Time To Buy The Dip? These Are The Large-Cap Crypto Assets To Watch

After a turbulent week for the crypto market, the drop in prices has left an opportunity for investors to enter new or double down on their various positions Fortunately, the blockchain intelligence

Central Bank Official Criticizes Binance Operations In Nigeria

An official at the Central Bank of Nigeria (CBN) has stated that Binance operated illegally in multiple ways in the West African nation This development comes amidst the ongoing legal trial of the
Previous article
Bitwise Investments Updates Ethereum ETF Filing, Reveals $2.5M Seed Interest
Next article
Whales Dump Over $1 Billion In Bitcoin: Fire Sale Or Foreshadowing?

Categories:

Hot right now:

Company:

Follow on:

Crypto Coin Live Stats

Coinsurges provides coverage of fintech, blockchain, and Bitcoin, delivering the most recent news and analyses on the future of money. Stay up-to-date with live prices, charts, and trading options for the top exchanges. Keep track of the day's top cryptocurrency gainers and losers, as well as which coins have experienced gains and losses in the past 24 hours.
Trust Coinsurges as your go-to source for all news and updates in the industry.