"Researchers Exploit Kraken Exchange Bug, Steal $3 Million in Crypto"

The cryptocurrency exchange Kraken has revealed that alleged security researchers stole $3 million in cryptocurrency using a zero-day website bug. Chief Security Officer Nick Percoco disclosed that the exchange's security team received a vague bug report about an "extremely critical" flaw. It enabled anyone to artificially increase a Kraken wallet's balances. Kraken investigated the report and found a bug that allowed attackers to initiate deposits and receive funds even if the deposit failed. The bug was fixed, but three users used it as a zero-day to steal $3 million from the exchange's treasury. This article continues to discuss the theft by alleged security researchers through the exploitation of a Kraken exchange bug.

BleepingComputer reports "Researchers Exploit Kraken Exchange Bug, Steal $3 Million in Crypto"

Submitted by grigby1

Submitted by Gregory Rigby on