0
HomeCryptocurrencyEthical Hacker Reveals Coinbase Vulnerability and Prevents Loss of Millions

Ethical Hacker Reveals Coinbase Vulnerability and Prevents Loss of Millions

At the beginning of each year in the United States, advertisers watch for the evening of the  Super Bowl , the final of the American football championship, organized by the NFL  (National Football League). 

Broadcast by  NBC , the retransmission of this match is the most watched program of the year: more than 90 million spectators. And as you might expect, commercials are very popular with advertisers, with amounts that can go up to 7 million dollars for a 30-second spot. 

Thus, it was the  Super Bowl that Steve Jobs had chosen in 1984 to launch his Macintosh computer, while in 2015, the video game  Cash of Clans Revengehad offered the services of actor Liam Neeson to praise his merits.

A Super Bowl marked by crypto ads

In February 2022, the new fact was the presence of several companies from the cryptocurrency sector during the show: the trading platforms FTX , Crypto.com and Coinbase.

The Coinbase ad was particularly noticeable: it was a black screen with a QR code moving across the screen. When viewers scanned this QR code, they landed on the Coinbase site, with the prospect of earning $15 in Bitcoin for opening an account. The success of this mystery ad has far exceeded all expectations, and even caused a “crash” following such an influx, at the risk of attracting some mocking tweets.

ethical-hacker-

The hacker’s emergency message

However, another unexpected event occurred: Tree of Alpha, a “  white hat  ” ( ethical ) hacker posted a tweet inviting the Coinbase development team or even its CEO Brian Armstrong to contact him at the earliest. quickly. 

In fact, Tree Alpha explained that it had spotted a vulnerability in this application .

Coinbase took the threat very seriously and suspended all transactions for two hours. Informed of the flaw, the technical teams were able to resolve it quickly – which Tree of Alpha confirmed – after which traffic was able to resume. 

Tree of Alpha has announced that it will release details of this vulnerability over the coming week. For his part, Brian Armstrong welcomed the initiative of the hacker – without specifying whether he had received a reward. Tree of Alpha claimed in a tweet that he didn’t receive any bounty and that was not his motivation.

Protect the image of the cryptocurrency industry

Why did Tree of Alpha see fit to do this? According to him, the misguided exploitation of this vulnerability would have allowed malicious actors to alter all of Coinbase’s order books with misleading prices. 

The consequences would have been dramatic for Coinbase, but also for the image of the entire crypto industry. It seems that Tree of Alpha was keen not to contribute to tarnishing the reputation of this young domain.

Published Date:

Mehmet is one of the administrator of Teknonel. As a software developer, he loves to share his knowledge in related topics. He is highly familiar with the editorial process from the inception of an article idea, through the iterative process, publishing, and performance analysis as well as product reviews.

Popular in This Category

Related Articles