Exchanges Are Exchanging In-House Tech With Service Providers?

6m
cryptodaily

Ace VPN Review: More Cons Than Pros?

11m
block

HideMyAss Review – Fast Speeds, but Privacy Concerns

12m
block

StrongVPN Review: Secure, No Logs VPN, but Some Drawbacks

13m
block

VPN Gate Review: Free VPN, but Privacy Issues

14m
block

Facebook’s Crypto Libra May Kill Launch in India, Its Biggest Market: Report

26m
cryptonewmedia

Electronics Giant Samsung Prioritizes Blockchain in 10-Year Roadmap

27m
cryptonewmedia

Can Facebook’s Libra Influence Bitcoin Price?

28m
cryptonewmedia

QuadrigaCX CEO Set Up Fake Crypto Exchange Accounts With Customer Funds

29m
coindesk

‘Dead’ CEO Cotten Embezzled Funds For Years

29m
cryptonewmedia

Bitcoin Price Rally Stalls as Open Futures Hit Record Highs

31m
coindesk

Former Circle Exec Joins Royal Bank Of Scotland To Front Fintech Project

36m
cryptodaily

Facebook’s Calibra Digital Wallet Will Not Be Available in Its Largest Markets

1h
cryptonewmedia

Italy will Use Blockchain and Fintech for Interbank Checks

1h
coinidol

PoPermissionless Blockchain Network Algorand Raises $60M in Token Auction

1h
cryptonewmedia

‘We Don’t Deal in the Speculative’

1h
cryptonewmedia

Russian Hackers May Be Responsible for Coincheck Heist

1h
cryptonewmedia

Crypto Market Showing Positive Signs: Bitcoin Cash, EOS, TRX, ADA Analysis

1h
cryptonewmedia

Tyler Winklevoss: “If Bitcoin Breaks 10k, You Can Bet It’s Going To Break 15k”

1h
cryptodaily

QuadrigaCX Update: ‘Dead’ CEO Cotten Embezzled Funds For...

1h
bitcoinist

IBM Launches Upgrade of their Blockchain Platform

1h
coinidol

Japanese Agency Claims 170% Increase in Crypto-related Inquiries in 2018

2h
bitcoinnews

Why Should I Buy Stablecoins?

2h
cryptodaily

Bitcoin in the Chop But Steady Amid Libra Chaos: Long Term Price Analysis

2h
cryptoglobe

Beaxy Launches Crypto Trading Platform By Diana Ngo - June 11, 2019 0 121

2h
coinjournal


CZ Explains How Binance Dealt With Aftermath of $40 Million Theft

cryptoglobe

1mon ago

On Sunday (May 19), Changpeng Zhao (aka "CZ"), the Co-Founder and CEO of digital asset exchange Binance, told the crypto community what he and his team had been up to since the May 7 security breach that resulted in a theft of over 7,000 BTC from their Bitcoin hot wallet.

According to CZ, the hackers involved in the security breach somehow managed to get control over a number of user accounts and structured large withdrawals from these accounts in such a way thay managed not to be detected/noticed by Binance's "pre-withdrawal risk management checks." Their "post-withdrawal risk monitoring system" only noticed something was wrong after the hackers had moved the stolen BTC off of the exchange via a single transaction, at which time it immediately suspended all "subsequent withdrawals."

At first, the Binance team was not exactly sure what had happened, and so they decided that the safest course of action was for CZ to send out a tweet to say that the "withdrawal servers" were in "unscheduled maintenance mode" while the team was investigating the incident.

Once the team had confirmed that the exchange had been hacked, information about the security incident was broadcast to the outside world via all of Binance's communication channels (such as Telegram, Twitter, and Medium).

Since the team could not be sure which user accounts the hackers had access to, it was decided that it would be too risky to allow further withdrawals to be made until the team had the chance to make "significant changes" to the platform (to make it more secure). Binance's announcement on May 8 estimated that the exchange needed to do "a thorough security review" and estimated that this would take about "ONE WEEK," and that during this period, "deposits and withdrawals" would need to "REMAIN SUSPENDED."

By being fully transparent in their communication with Binance users, they were able to receive "tremendous support" from them.

Seeing CZ live put much of the Binance community "at ease." Unfortunately, because CZ had been up all night, he was not in an ideal mental state when he did the AMA. Just before the AMA, his team told him that a Bitcoin Core developer had suggested that it would be technically possible to roll back the single Bitcoin transaction carried out by the hackers by "hugely incentivizing the miners." CZ made the unfortunate mistake of mentioning this "reorg" idea (which he now realizes is a "taboo topic") during the AMA, for which he took a heavy beating (especially from hardcore Bitcoin maximalists) on Twitter (and elsewhere).

Although he was in a "F***, F***, F***” state" for around 10 seconds, a few moments later, he "began to come to terms with it," and a quick mental calculation told him that the theft of around 7000 BTC (equivalent of around $40 million at the time) could be fully covered by their SAFU fund. Meanwhile, his team had already gone into "War Mode", and their professionalism and support cheered up CZ.

Binance received support from many sources: people defending him and Binance on social media platforms, and helping to answer questions; the Binance Angels (who are all volunteers) "addressing questions" and "reassuring" users on "multiple communities"; analytics firms helping with the tracking of the stolen funds; exchanges and wallet services offering to help by blocking "any deposits associated with the hacker addresses"; and "numerous offers for help from law enforcement agencies around the world."

"Speaking with various team members, and as correctly analyzed by community members, such as Gautam Chhugani, this incident may actually be a good thing for us in the long run. Security is a never-ending practice. There are always more things to do in security, and we have implemented many of them in this last week and will continue to implement more in the future. Given this incident, Binance has actually become far more secure than before, not just in the affected areas, but as a whole."

Regarding any copyrights issue, please contact us:content@hashbee.com.

0 comments