Fun

Kraken recovers $3 million from CertiK, ending bug bounty saga

News Feed - 2024-06-20 11:06:31

Zoltan Vardai9 minutes agoKraken recovers $3 million from CertiK, ending bug bounty sagaCertik has returned the funds to Kraken exchange, putting a happy end to the bug bounty-related saga.61 Total viewsListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTJoin us on social networksCryptocurrency exchange Kraken has recovered missing funds following a high-profile bug bounty exploit fiasco. 


Kraken confirmed the return of the stolen digital assets worth nearly $3 million, putting an end to the Kraken-Certik saga that started on June 9.


The recovery of the funds, minus transaction fees, was confirmed by Nicholas Percoco, chief security officer of Kraken, in a June 20 X post:“Update: We can now confirm the funds have been returned (minus a small amount lost to fees).”


Kraken’s CSO first announced the $3 million worth of missing funds on June 19, when he claimed that a “security researcher” maliciously withdrew them from the treasury after discovering and sharing an existing bug.


Kraken claimed that it was extorted by the security researcher who was refusing to return the funds, demanding a reward and a call with the exchange’s business development team.


Related:Nomura crypto arm Laser Digital bags Abu Dhabi licenseCertiK"s side of the story


Shortly after Kraken’s post about the missing funds, blockchain security firm CertiK publicly identified itself as the “security researcher” that Kraken claimed stole $3 million of digital assets.


In a June 19 X post, CertiK said it had informed Kraken of an exploit that allowed it to remove millions of dollars from the exchange’s accounts. Certik also claimed to have been threatened by the exchange’s team:“After initial successful conversions on identifying and fixing the vulnerability, Kraken’s security operation team has THREATENED individual CertiK employees to repay a MISMATCHED amount of crypto in an UNREASONABLE time even WITHOUT providing repayment addresses.”


The security firm posted a timeline of events, starting with identifying the exploit on June 5 and ending with claims Kraken threatened a CertiK employee on June 18. In a statement to Cointelegraph, CertiK said it planned to transfer the funds “to an account that Kraken will be able to access.”Bug bounty saga timeline. Source: CertiK


Related:Bitcoin ETFs legitimized the crypto industry for investors — Storm PartnersWhy did CertiK withdraw nearly $3 million?


Kraken’s CSO initially said that the first malicious transfer, worth just $4, would have been sufficient to prove the bug and collect “sizable rewards” from Karken’s bounty program.


However, the security researcher, which was later disclosed as CertiK, had minted nearly $3 million into their Kraken accounts.


In a post following the return of the $3 million, CertiK said that the multi-million sum was necessary to test the limits of the exchange:“We want to test the limit of Kraken’s protection and risk controls. After multiple tests across multiple days and close to $3 million worth of crypto, no alerts were triggered and we still haven’t figured out the limit.”


Moreover, CertiK claims that it didn’t initially request a bounty, but it was something mentioned by the exchange:“We never mentioned any bounty request. It was Kraken who first mentioned their bounty to us, while we responded that the bounty was not the priority topic and we wanted to make sure the issue was fixed.”


CertiK added that no Kraken user funds were endangered since the exploited funds were “minted out of air.”


Magazine:Ethereum’s recent pullback could be a gift: Dynamo DeFi, X Hall of Flame# Kraken# Altcoin# Business# Hackers# Cryptocurrency Exchange# Cybersecurity# Hacks# DeFiAdd reaction

News Feed

Bitcoin’s Average and Median-Sized Network Fees Rose 40% Higher in March
Bitcoin"s Average and Median-Sized Network Fees Rose 40% Higher in March In March 2023, Bitcoin’s average and median-sized fees jumped more than 40% higher after rising 122%
ECB Wants Active Role in Crypto, Will Not Deter Private Solutions
ECB Wants Active Role in Crypto, Will Not Deter Private Solutions The European Central Bank (ECB) wants to play an active role in the field of digital currency, said President Ch
Spot Bitcoin ETFs suffer third straight day of net outflows, $261M bled
Jesse Coghlan3 hours agoSpot Bitcoin ETFs suffer third straight day of net outflows, $261M bledUnited States-listed spot Bitcoin ETFs have now bled around $742 million in just three trading days.2653 Total views6 Total s
ORA raises $20M in funding for tokenizing AI models
Ana Paula Pereira6 hours agoORA raises $20M in funding for tokenizing AI modelsORA plans to use the funds to expand its ecosystem, focusing on research and development of oracles and blockchain infrastructure.536 Total v
El Salvador Buys 100 More Bitcoins Amid Crypto Sell-Offs and New Covid-19 Variant Scare
El Salvador Buys 100 More Bitcoins Amid Crypto Sell-Offs and New Covid-19 Variant Scare As reports of a new Covid-19 strain spread, tanking the price of many cryptocurrencies, El S
Amaka Nwaokocha14 hours agoAI tool revolutionizes brain tumor treatment by guiding surgeons: StudyAlthough the tool’s accuracy may not match current genetic tests, it can swiftly predict a tumor’s profile.3383 Total
New South Korean leadership will press for Bitcoin ETF trading
Derek Andersen5 hours agoNew South Korean leadership will press for Bitcoin ETF tradingThe Democratic Party of Korea promised to allow Bitcoin exchange-traded funds, and it expects to follow through — one way or anothe
Turner Wright3 hours agoFTX execs who pleaded guilty are potential witnesses in Sam Bankman-Fried’s criminal caseAccording to reports from the courthouse, Assistant U.S. Attorney Danielle Sassoon named Caroline Ellison
Here’s Why SUI At $3.61 Could Be the Calm Before A Parabolic Surge
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
Blockchain-Backed Election Art Sells for $66K, Animation Changes After Electoral College Decision
Blockchain-Backed Election Art Sells for $66K, Animation Changes After Electoral College Decision While Americans wait for the official outcome of the electoral
Brayden Lindrea5 hours agoSEC’s first deadlines to approve 7 Bitcoin ETFs coming over the next weekAnalysts say the best-case scenario for crypto is that the Securities and Exchange Commission approves the batch of spo
$8M Worth of ‘Sleeping’ Bitcoin Rewards from 2010 Moved the Day Before ‘Black Thursday’
$8M Worth of "Sleeping" Bitcoin Rewards from 2010 Moved the Day Before "Black Thursday"Over a half a million dollars worth of bitcoin from a May 2010 coinbase reward was transferred