Crypto Flexs
  • DIRECTORY
  • CRYPTO
    • ETHEREUM
    • BITCOIN
    • ALTCOIN
  • BLOCKCHAIN
  • EXCHANGE
  • ADOPTION
  • TRADING
  • HACKING
  • SLOT
  • TRADE
Crypto Flexs
  • DIRECTORY
  • CRYPTO
    • ETHEREUM
    • BITCOIN
    • ALTCOIN
  • BLOCKCHAIN
  • EXCHANGE
  • ADOPTION
  • TRADING
  • HACKING
  • SLOT
  • TRADE
Crypto Flexs
Home»EXCHANGE NEWS»Bug Bounties Wrong: Kraken Accuses CertiK of Extortion, CertiK Defends Its Actions
EXCHANGE NEWS

Bug Bounties Wrong: Kraken Accuses CertiK of Extortion, CertiK Defends Its Actions

By Crypto FlexsJune 20, 20243 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
Bug Bounties Wrong: Kraken Accuses CertiK of Extortion, CertiK Defends Its Actions
Share
Facebook Twitter LinkedIn Pinterest Email

TLDR

  • Kraken discovered a bug that could allow users to artificially inflate balances and withdraw funds without completing a deposit.
  • Blockchain security company CertiK identified itself as the ‘security researcher’ who exploited the bug and withdrew nearly $3 million from Kraken’s coffers.
  • Kraken claims CertiK refused to return the funds until the exchange called its estimates of potential losses “extortion.”
  • CertiK defended its actions, saying it was testing the scope of the vulnerability and that Kraken threatened employees into returning inconsistent amounts of funds within an unreasonable time period.
  • The incident sparked a debate in the cryptocurrency industry about the ethics of white hat hacking and bug bounty programs.

Cryptocurrency exchange Kraken recently revealed that it was hit by a security vulnerability that could allow users to artificially inflate account balances and withdraw funds without fully completing a deposit. The exchange reported that the exploit resulted in approximately $3 million being stolen from treasury.

Blockchain security company CertiK identified the “security researchers” responsible for exploiting the bug and withdrawing funds.

Kraken’s chief security officer, Nick Percoco, previously accused the then-unnamed security team of “robbing” the company for refusing to return funds until the exchange provided an estimate of potential losses if the bug was not disclosed.

Kraken Security Updates:

On June 9, 2024, we received a bug bounty program notification from a security researcher. Although no specifics were initially revealed, their email claimed that they had discovered a “very important” bug in our platform that could have artificially inflated balances.

— Nick Percoco (@c7five) June 19, 2024

But CertiK defended its actions, claiming it was testing the scope of the vulnerability and that Kraken had threatened employees into returning inconsistent amounts of funds within an unreasonable period of time without even providing a redemption address.

CertiK recently identified a series of serious vulnerabilities in: @krakenfx It’s an exchange that could potentially result in hundreds of millions of dollars in losses.

Starting by looking for @krakenfxA deposit system that may not be able to distinguish internal differences… pic.twitter.com/JZkMXj2ZCD

— CertiK (@CertiK) June 19, 2024

The security company provided a timeline of events detailing its interactions with Kraken and the discovery of the exploit.

According to CertiK, the vulnerability allowed millions of dollars to be deposited into Kraken accounts, and the manipulated cryptocurrency could be withdrawn and converted to valid cryptocurrency.

The company also claimed that no alerts were raised during several days of testing, and that Kraken responded and locked down test accounts just days after the initial public disclosure.

The incident sparked debate about the ethics of white hat hacking and the effectiveness of bug bounty programs.

While some argue that CertiK’s actions were justified to thoroughly test vulnerabilities, others believe the company crossed a line by withdrawing so much money and refusing to return it immediately.

Kraken claims CertiK’s actions do not conform to the principles of white hat hacking and that it is working with law enforcement to recover its assets. The exchange also emphasized that user funds were not affected by the attack as the stolen money came from Kraken’s own coffers.

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Bitcoin prices return to green -building exercise for more profits

June 26, 2025

Dogecoin (DOGE) after collision

June 23, 2025

Litecoin Key Support in Focus Price Eye Brake Out Determination

June 20, 2025
Add A Comment

Comments are closed.

Recent Posts

No Altcoin Season 2025 ? Why Bitcoin Dominance Is Holding Strong In The Crypto Market

June 28, 2025

Why It Matters For Every Crypto Investor

June 27, 2025

Why It Matters For Every Crypto Investor

June 27, 2025

Safe smart account audit summary

June 27, 2025

CARV’s New Roadmap Signals Next Wave Of Web3 AI

June 27, 2025

CARV’s New Roadmap Signals Next Wave Of Web3 AI

June 27, 2025

Bybit Expands Global Reach With Credit Card Crypto Purchases In 25+ Currencies And Cashback Rewards

June 27, 2025

BYDFi Joins Seoul Meta Week 2025, Advancing Web3 Vision And South Korea Strategy

June 27, 2025

Earns $9,800 Per Day With BTC Breaks Through $107,000, GoldenMining Global Market.

June 27, 2025

Why Bakkt Holdings can buy Bitcoin with a $ 1 billion increase

June 27, 2025

NVIDIA RTX strengthens FITY’s AI -centered innovation in Cooler Design.

June 27, 2025

Crypto Flexs is a Professional Cryptocurrency News Platform. Here we will provide you only interesting content, which you will like very much. We’re dedicated to providing you the best of Cryptocurrency. We hope you enjoy our Cryptocurrency News as much as we enjoy offering them to you.

Contact Us : Partner(@)Cryptoflexs.com

Top Insights

No Altcoin Season 2025 ? Why Bitcoin Dominance Is Holding Strong In The Crypto Market

June 28, 2025

Why It Matters For Every Crypto Investor

June 27, 2025

Why It Matters For Every Crypto Investor

June 27, 2025
Most Popular

The world’s first ICO on the Bitcoin blockchain nears its final 48 hours

March 16, 2024

VanEck predicts wave of Solana ETF approvals after election

November 19, 2024

The Bitzlato co-founder pleaded guilty to handling $700 million in illicit funds.

December 7, 2023
  • Home
  • About Us
  • Contact Us
  • Disclaimer
  • Privacy Policy
  • Terms and Conditions
© 2025 Crypto Flexs

Type above and press Enter to search. Press Esc to cancel.