In a recent cybersecurity incident, researchers from CertiK discovered a critical vulnerability in Kraken's Digital Asset Exchange. The flaw could have allowed attackers to "double spend", faking a deposit into the exchange and withdrawing the same amount. CertiK reportedly exploited the vulnerability at least 20 times over five days, claiming they were testing Kraken's detection mechanisms. Although all funds taken during this "testing" have been returned to Kraken, the incident raises questions about the ethics of white hat hacking and the need for trust and transparency in the industry.