According to Techub News, Kraken Chief Security Officer Nick Percoco published a post revealing that the Kraken team received a bug bounty alert on June 9, saying that an "extremely serious" vulnerability was discovered. The vulnerability allows attackers to increase account balances without completing deposits. The Kraken team fixed the vulnerability within 1 hour, but found that three accounts had exploited the vulnerability, one of which had a KYC information claiming to be a "security researcher." The "researcher" used the vulnerability to deposit $4 in cryptocurrency into his account and submitted a bug bounty report. The "researcher" then disclosed the vulnerability to two other people who worked with them, who withdrew nearly $3 million from the Kranken treasury. Kraken demanded the return of the funds but failed, calling its actions extortion and treating the matter as a criminal case, and is coordinating with law enforcement agencies.
See original
Kraken Chief Security Officer: Kraken Treasury was stolen by a vulnerability exploiter with nearly $3 million in assets, user funds are safe and the vulnerability has been fixed
Disclaimer: Includes third-party opinions. No financial advice. May include sponsored content. See T&Cs.
Replies 0
Explore the latest crypto news
âĄïž Be a part of the latests discussions in crypto
đŹ Interact with your favorite creators
đ Enjoy content that interests you
Email / Phone number
Relevant Creator
LIVE
@Tech-News-188