Cryptocurrency

Binance to Pay White Hat Hackers $1 Million for Bug, Up to 10% for Catching Hackers

Published

12 months ago

October 7, 2022

Following the breach in its security protocol and the eventual transfer of 2 million Binance coins estimated at about $570 million, the world’s largest cryptocurrency platform has announced plans to start paying whitehat hackers who helped identify loopholes in its technology and those that help arrest criminal hackers that unlawfully breaks into its platform.

In a long blog post released sequel to the theft, Binance management explained that the hackers exploited the native cross-chain bridge between BNB Beacon Chain (BEP2) and BNB Smart Chain (BEP20 or BSC), known as “BSC Token Hub.”

Therefore, were able to move a total of 2 million BNB. The leading exchange platform claimed the exploit was carried out by a sophisticated forging of the low-level proof into one common library.

However, despite the fact that it runs a decentralised blockchain developed to run without external interference, it was able to contain the situation by contacting 26 BNB Smart Chain active validators out of the 44 spread in various time zones.

While this delayed the company’s efficiency in arresting the situation, it was able to minimize losses, Investors King understands. Binance reported that only BNB coins valued at $100 million were transferred to hackers’ wallets.

“Decentralized chains are not designed to be stopped, but by contacting community validators one by one, we were able to stop the incident from spreading. It was not that easy as BNB Smart Chain has 26 active validators at present and 44 in total in different time zones. This delayed closure, but we were able to minimize the loss,” Binance said.

Therefore, in an effort to avoid a similar situation going forward, Binance has announced two key changes; to start compensating white hat hackers that helped identified loopholes that can be exploited by criminals like other top exchange platforms like Coinbase.

It would be recalled that Investors King reported that the Aurora platform paid two white hat hackers $2 million for helping to identify what could have been a disaster for the organisation.

Binance will start paying $1 million per bug once its on-chain governance votes.

Also, the company plans to pay as much as 10% of the recovered funds as a bounty to those that helped in catching criminal hackers.

Moving forward Binance said “Looking at the broader picture, we have seen a series of attacks on targeting vulnerabilities in cross-chain bridges. We will openly share the details of the postmortem and all lessons on how to implement more advanced security measures to shore-up these vulnerabilities.

“A new on-chain governance mechanism will be introduced on the BNB Chain to fight and defend future possible attacks.”

Up Next

Cryptocurrency Presents a New Shift for Wealth Creation in Nigeria, Says Patricia CEO

Don't Miss

Cryptocurrency: Hackers Steal $100 Million Worth of Binance Coins (BNB)

Samed Olukoya

Is the CEO/Founder of Investors King Limited. A proven foreign exchange research analyst and a published author on Yahoo Finance, Nasdaq, Entrepreneur.com, Investorplace, and many more. He has over two decades of experience in global financial markets.

Comments

Cryptocurrency

Mixin Network Halts Services After $200 Million Security Breach; Recovery Plan in Progress

Published

20 hours ago

September 25, 2023

Investors King

Mixin Network, a prominent decentralized wallet service provider, has been rocked by a massive security breach resulting in a loss of $200 million.

The breach, attributed to vulnerabilities in its cloud service provider’s database, has raised questions about the platform’s dependence on centralized infrastructure.

Mixin Network, known for its support of 48 public blockchains and an impressive total network asset value exceeding $1 billion, halted deposit and withdrawal services following the breach.

This incident has prompted discussions within the crypto community regarding the risks associated with centralization in decentralized platforms.

In response to the breach, Mixin Network has taken swift action, enlisting the expertise of blockchain security specialists from SlowMist.

The company has pledged to resume services only after thoroughly addressing identified vulnerabilities, a decision reached through consensus among all network nodes.

The plan for asset recovery will be announced in due course, and Mixin founder Feng Xiaodong will provide a detailed explanation in a public livestream.

The Mixin incident follows closely on the heels of the JPEX cryptocurrency exchange scandal in Hong Kong, which has left countless individuals reeling from financial losses totaling $178 million.

Experts now speculate that these recent setbacks may lead the Hong Kong government to reconsider its enthusiastic promotion of Web3 technologies, as concerns over security and public sentiment cast a shadow on the region’s cryptocurrency ambitions.

Carlton Lai, head of blockchain and cryptocurrency research at Daiwa Capital Markets, said, “I think this scandal will have a pretty sizeable negative impact on retail sentiment, given its significant local presence and the various celebrities involved.”

As Hong Kong grapples with the fallout from these high-profile incidents, the future of cryptocurrency in the region remains uncertain, with questions of regulation and security taking center stage.

Cryptocurrency

Dallas Mavericks Owner and Billionaire Tech Investor, Mark Cuban, Falls Victim to Phishing Attack, Losing $870,000 in Crypto Assets

Published

1 week ago

September 18, 2023

Samed Olukoya

Mark Cuban, owner of the Dallas Mavericks and a prominent billionaire technology investor, recently fell prey to a phishing attack, resulting in a loss of approximately $870,000 worth of tokens.

The incident occurred over the weekend after months of inactivity on Cuban’s crypto wallet.

Phishing attacks, a prevalent threat in the crypto industry, deceive users into revealing sensitive information, downloading malicious software, and exposing their private data.

These attacks exploit users’ trust, often causing them to overlook the authenticity of incoming requests on their crypto wallets or unwittingly download counterfeit applications designed solely to pilfer their assets.

Cuban’s crypto wallet was emptied of various assets, including U.S.-pegged stablecoins, staked ETH (stETH), SuperRare (RARE) tokens, and some Ethereum Name Service (ENS) domains, according to blockchain data.

The initial discovery of these suspicious transactions was made by the vigilant on-chain investigator @wazzcrypto.

Fortunately, Cuban was alerted to these transactions, and he managed to safeguard over $2.5 million worth of Polygon’s MATIC tokens.

He accomplished this by promptly logging into his wallet and transferring the tokens to a secure Coinbase exchange address.

Cuban revealed that the phishing attack was apparently initiated through a fraudulent MetaMask wallet application that he had unwittingly downloaded.

This incident marks the second high-profile phishing attack in as many weeks, following Ethereum co-founder Vitalik Buterin’s experience in early September. Buterin’s X account was compromised in a phishing attack, although he did not appear to lose any of his own funds.

Nevertheless, unsuspecting users collectively suffered losses of up to $700,000 by sending tokens to a malicious link that falsely appeared to have Buterin’s endorsement.

As the crypto industry continues to thrive, it is crucial for users to exercise caution and remain vigilant to safeguard their digital assets from the ever-present threat of phishing attacks.

Ethereum

RxR Analysis Reveals: Ether’s True Worth 27% Higher than Market Price

Published

1 week ago

September 18, 2023

Samed Olukoya

RxR, a research-driven partnership between Republic Crypto and Re7 Capital, has revealed that Ether (ETH), the native token of the Ethereum blockchain, is currently trading at a 27% discount to its actual fair value.

This revelation comes as a result of RxR’s innovative approach to evaluating the worth of cryptocurrencies. Instead of relying solely on traditional metrics, RxR’s methodology incorporates a blended version of the Metcalfe law that takes into account both the active user base on the continuously expanding Ethereum scaling networks and the users on the Ethereum mainnet.

Ether, as a fundamental component of the Ethereum ecosystem, facilitates a wide range of activities, from simple transactions to participating in network security through staking, earning interest, and even storing non-fungible tokens. As such, the value of Ether has long been intertwined with Ethereum’s network usage.

Lewis Harland, an analyst at RxR, explained the significance of this approach, stating, “Ethereum’s network valuation exhibits a closer alignment with the updated Metcalfe law index when the active user base of Ethereum’s scaling networks is included in the model, in contrast to when it is omitted.”

Harland continued, “The updated model, which factors in these networks, places ETH’s valuation at $275 billion, indicating that the current market capitalization is trading at a substantial 27% discount.”

Ether’s market capitalization consistently tracks the blended Metcalfe law model more accurately than the traditional model, which fails to consider the growing activity on layer 2 networks or offchain solutions built atop the Ethereum mainnet.

In essence, this analysis challenges the perception that Ether might be overvalued, as suggested by the traditional Metcalfe law Model.

The emergence of Layer 2 technology has undoubtedly become one of the most dynamic and exciting developments in the crypto market. Key protocols, such as Coinbase’s BASE, Arbitrum, and Optimism, have found their unique niches within this landscape.

According to data from L2Beat, the total value locked in layer 2 protocols has surged more than threefold in just two years, reaching an impressive milestone of over $9 billion.