Security

Top Exchange Kraken Discovers “Extremely Critical” Bug

19.06.2024

Major cryptocurrency exchange Kraken has discovered a critical bug that effectively allowed printing free money.

Despite the bug’s severity, the exchange says that no client’s assets were actually at risk.

The global cryptocurrency trading platform was notified about the vulnerability by a security researcher via email.

Despite routinely dealing with fake bug bounty reports, the exchange says that it treated that particular alert seriously, with its team quickly digging into the issue.

The exchange’s team discovered a bug that allowed bad actors to initiate a deposit onto Kraken and receive funds in their account without completing the deposit.

A bad actor could print assets out of thin air on Kraken, according to Nick Percoco, Kraken’s chief security officer. This was due to a recent UX change that would credit accounts before their assets cleared.

A money-printing spree

Three accounts managed to take advantage of the bug, according to Percoco. Notably, one of them was the security researcher who generated $4 in crypto and later disclosed the bug to the other two individual who printed millions of dollars worth of crypto.

“After patching the risk, we thoroughly investigated the situation and quickly discovered that 3 accounts had leveraged this flaw within a few days of each other. As we dug deeper, we noticed that one account was KYC’d to an individual who claimed to be a security researcher,” Percoco said.

Source

Click to rate this post!
[Total: 0 Average: 0]
19.06.2024
Show More

Leave a Reply

Your email address will not be published. Required fields are marked *

  • bitcoinBitcoin (BTC) $ 75,874.00
  • ethereumEthereum (ETH) $ 2,878.53
  • tetherTether (USDT) $ 1.00
  • usd-coinUSDC (USDC) $ 0.999629
  • dogecoinDogecoin (DOGE) $ 0.191495
  • cardanoCardano (ADA) $ 0.396023
  • tronTRON (TRX) $ 0.160142
  • chainlinkChainlink (LINK) $ 12.51
  • bitcoin-cashBitcoin Cash (BCH) $ 377.27
  • leo-tokenLEO Token (LEO) $ 6.26
  • litecoinLitecoin (LTC) $ 71.34
  • daiDai (DAI) $ 0.999538
  • stellarStellar (XLM) $ 0.101241
  • ethereum-classicEthereum Classic (ETC) $ 20.14
  • moneroMonero (XMR) $ 163.27
  • blockstackStacks (STX) $ 1.67
  • crypto-com-chainCronos (CRO) $ 0.091043
  • okbOKB (OKB) $ 40.43
  • hedera-hashgraphHedera (HBAR) $ 0.048949
  • cosmosCosmos Hub (ATOM) $ 4.50
  • vechainVeChain (VET) $ 0.021627
  • makerMaker (MKR) $ 1,508.64
  • kucoin-sharesKuCoin (KCS) $ 10.17
  • theta-tokenTheta Network (THETA) $ 1.20
  • gatechain-tokenGate (GT) $ 9.04
  • algorandAlgorand (ALGO) $ 0.122276
  • matic-networkPolygon (MATIC) $ 0.342969
  • neoNEO (NEO) $ 10.26
  • eosEOS (EOS) $ 0.464324
  • tether-goldTether Gold (XAUT) $ 2,710.72
  • zcashZcash (ZEC) $ 44.02
  • tezosTezos (XTZ) $ 0.652279
  • true-usdTrueUSD (TUSD) $ 0.994717
  • havvenSynthetix Network (SNX) $ 1.49
  • iotaIOTA (IOTA) $ 0.118792
  • bitcoin-goldBitcoin Gold (BTG) $ 23.61
  • holotokenHolo (HOT) $ 0.001760
  • dashDash (DASH) $ 23.45
  • 0x0x Protocol (ZRX) $ 0.330573
  • zilliqaZilliqa (ZIL) $ 0.014380
  • siacoinSiacoin (SC) $ 0.004642
  • enjincoinEnjin Coin (ENJ) $ 0.148341
  • ravencoinRavencoin (RVN) $ 0.017798
  • basic-attention-tokenBasic Attention (BAT) $ 0.170160
  • qtumQtum (QTUM) $ 2.40
  • decredDecred (DCR) $ 12.49
  • ontologyOntology (ONT) $ 0.181419
  • nemNEM (XEM) $ 0.016482
  • iconICON (ICX) $ 0.133902
  • liskLisk (LSK) $ 0.834074
  • nanoNano (XNO) $ 0.867617
  • numeraireNumeraire (NMR) $ 15.51
  • paxos-standardPax Dollar (USDP) $ 1.00
  • digibyteDigiByte (DGB) $ 0.006214
  • wavesWaves (WAVES) $ 1.04
  • statusStatus (SNT) $ 0.025517
  • hiveHive (HIVE) $ 0.187119
  • huobi-tokenHuobi (HT) $ 0.536017
  • steemSteem (STEEM) $ 0.174327
  • binance-usdBUSD (BUSD) $ 0.999118
  • republic-protocolRen (REN) $ 0.035937
  • omisegoOMG Network (OMG) $ 0.252006
  • bitcoin-diamondBitcoin Diamond (BCD) $ 0.060547
  • bytomBytom (BTM) $ 0.004247
  • kyber-networkKyber Network Crystal Legacy (KNCL) $ 0.457008
  • husdHUSD (HUSD) $ 0.026918