Kraken Faces Extortion Attempt After Security Breach

June

19

Share 0
Tweet 0
Share 0

Kraken, a prominent cryptocurrency exchange, recently faced a security incident involving a vulnerability discovered by a group of researchers. Initially reported through Kraken’s bug bounty program on June 9, the flaw allowed potential exploitation where users could inflate their account balances by manipulating deposit processes. Nick Percoco, Kraken’s chief security officer, confirmed that the issue was swiftly addressed without impacting user funds.

However, the situation took a troubling turn when the researchers allegedly engaged in fraudulent activity. Instead of adhering to standard bug bounty protocol—where vulnerabilities are reported, exploited minimally for proof, assets returned, and detailed vulnerability disclosure provided—the researchers reportedly withdrew nearly $3 million from Kraken’s treasury. This unauthorized withdrawal was distinct from client funds, as Percoco emphasized.

Kraken’s security team became suspicious when the researchers refused to disclose details of their activities and demanded a meeting with Kraken’s business development team, akin to a negotiation. They also insisted on knowing the potential financial impact if they hadn’t reported the vulnerability, which Percoco labeled as extortion rather than legitimate security research.

Bug bounty programs are widely used across industries like cryptocurrency to proactively identify and fix vulnerabilities before malicious actors exploit them. These programs typically involve inviting external “white hat” hackers to find flaws, following specific guidelines to qualify for a reward. Coinbase, a competitor of Kraken, operates a similar program.

In response to this incident, Kraken clarified that the researchers involved did not adhere to the program’s rules, hence they will not receive the bounty originally offered in good faith. Kraken is now collaborating with law enforcement to recover the misappropriated assets.

This incident underscores the challenges in managing bug bounty programs and highlights the importance of clear rules and ethical guidelines for researchers participating in such initiatives. For Kraken, the focus remains on strengthening their security measures and ensuring that vulnerabilities are responsibly disclosed and addressed.

👉Join our Trading Community and Earn Airdrops! 👈

Finally, if you learned something, hit that UP ARROW ⬆️ and SHARE. 🔁

You found this content helpful ?

  1. 1
    Join our free weekly "Bubble Bulletin" for more
  2. 2
    Join us on Discord for live chat and daily updates
  3. 3
    Follow us on Twitter
  4. 4
    Share this content using the buttons below :
Share 0
Tweet 0
Share 0
Previous post
Next post

Disclaimer

This piece of content is provided for educational and entertainment purposes only. Robin Technologies and Analytics LLC is the firm that distributes 1.2 Labs products. The firm does not provide individually tailored investment advice and does not take a subscriber’s or anyone’s personal circumstances into consideration when discussing investments; nor is Robin Technologies and Analytics LLC registered as an investment adviser or broker-dealer in any jurisdiction.

You should expect no financial returns one way or another based on statements contained herein. These points hold equally for any statements that could be attributed to The Art of The Bubble or any related business entities or personnel operating in association with Robin Technologies and Analytics LLC.

If you decide to buy or invest in anything, then your returns and potential losses are your own. No statements about taxation are taxable advice and you are encouraged to consult your own tax professional. You are also encouraged to do your own due diligence before investing in anything.

TAGS:

Bitcoin, crypto, crypto investing, Crypto market, crypto news, crypto wallet, cryptocurrency, Investing

RELATED POSTS:

November 7, 2024

ETH Surges Amid Hopes for DeFi Revival Under Pro-Crypto U.S. Policies

November 21, 2024

Gary Gensler to Resign as SEC Chair on Inauguration Day, Leaving Crypto Legacy in Focus

June 24, 2024

Tether Halts USDT Minting on Algorand and EOS for Strategic Focus

December 31, 2024

Ethereum’s Ascent: Why ETH Could Outperform Bitcoin in 2025

August 6, 2024

Binance Challenges $86 Million Tax Notice from Indian Authorities

June 20, 2021

I Sold For A 17.7x Gain in Ethereum

July 18, 2024

Crypto Innovation Surge: New Funds, Breakthrough Projects, and Strategic Partnerships Propel Industry Forward

May 9, 2024

Inside Binance’s Fight Against Market Manipulation

September 19, 2024

Ethereum Developers Split Pectra Upgrade for Streamlined Implementation and Reduced Risk

LATEST POSTS:

March 13, 2025

BlackRock’s BUIDL Token Surpasses $1B: A Milestone in Financial Tokenization

March 12, 2025

Bitdeer Expands Bitcoin Holdings by 75% Amid Strategic Mining Shift and Market Adjustments

March 11, 2025

Last-Minute Ethereum Rescue: How One User Averted a $360M MakerDAO Liquidation Cascade

March 10, 2025

Crypto Market Plunges as Fear Peaks: Bitcoin Drops, Investors Brace for Uncertainty

March 6, 2025

Emirates NBD Joins Dubai’s Crypto Revolution with Liv X Trading Platform

March 5, 2025

Trump’s Crypto Reserve Strategy: A Game-Changer for Bitcoin or Market Turmoil Ahead?

March 4, 2025

Flowdesk’s Bold Expansion: $102M Boost to Reshape Digital Asset Trading

February 26, 2025

Bitcoin’s $5B Options Expiry: Volatility, Max Pain, and Market Implications

February 25, 2025

GameStop’s Bitcoin Bet? Strive Asset Management Pushes for a Bold Financial Shift

What do do now?

Join the free 1.2 Labs "Bubble Trading" Bulletin for new trading strategies, macro & sentiment analysis and occasional free airdrops

 Join for free now