Topic: [2019-07-12] Japanese Exchange Hacked for $32 Million in Cryptocurrency (Read 379 times)

Yes, I agree with you on this one.Coincheck did almost nothing to ensure security of the coins.

I don't think any exchange really master how to prevent hacks.Even Binance, one of the most known exchanges with a solid team of engineers was a victim of a hack.It's not that easy to perfectly master a new growing field in terms of security that's IMHO we shouldn't blame them too much.

All holdings? Meaning no on-demand withdrawals? I suppose that's how BitMEX operates. Maybe this is the direction exchanges should head in. I'd feel safer trading on an exchange with 100% cold storage and would be fine with delayed withdrawals if that were the reason.

Why does this keep happenning? Have not they learned from the past recent hacks that sum up to billions of dollars? I agree with the previous comments about having ledger wallet and it should be mandatory for users of exchanges to own it before the can be allowed to trade. Having a ledger wallet should also be part of KYC process where they take photo with it to make the verification complete.

This is really a dangerous thing to happen as thousands of investors lose their money in such process and also it demoralises new entrants to trade as they always fear of losing money in such instances . Even government gets panicked and does not easily make it legal in their country considering this fact as well .

I am always feeling sad whenever another cryptocurrency exchange has become victim of hacking. It is quite unfortunate that the same story can go on and on because for now there is no guaranteed technology that can block talented and intelligent hackers who can e based in rogue countries we know of. Hacking has become a big business and with exchanges holding millions of coins and tokens these hackers will do everything possible because the prize is enormous. I am just hoping that something can really be done to once and for all stop this problem in the industry.

Still, one of the biggest problems for cryptocurrency has been and remains the vulnerability of hacking and hacking. And almost all the protection hackers come up with their own ways of hacking. Here, while we can say that the cryptocurrency is still developing and improving methods for protection.
A separate problem so far is hacking wallets and e-mail users of cryptocurrency. Although they occur in most cases due to the fault of the users themselves, this also has a very negative effect on the relatively slow cryptocurrency so far.

At least the CEO promises to compensate users-

Bitpoint Hack Shows That Regulators’ Scrutiny Does Not Equal Safety



https://cointelegraph.com/news/bitpoint-hack-shows-that-regulators-scrutiny-does-not-equal-safety

Genki Oda, founder and CEO of Bitpoint, told Cointelegraph that his platform is going to compensate its users, although without mentioning any specific time frame. Additionally, Oda said it was in touch with fellow exchanges Binance and Huobi regarding the freezing of stolen funds that have allegedly ended up in their wallets following the security breach. Such collaboration with other trading platforms is a common method of mitigating cryptocurrency hacks, as it prevents fraudsters from cashing-in on their loot. “If you know other way for locking or getting back the hacked crypto, please let us know the ways,” Oda added.

Moreover, Bitpont has announced it is going to compensate customers in cryptocurrencies rather than in their equivalent fiat value.

There is no end in sight for these exchange hacks. I am sure that this one was either an inside job, or a hack that was aided by someone from the inside. Else, how is it possible to hack a hot wallet which is under constant surveillance by the exchange staff? They should first screen all of their former employers, especially those who resigned within the last 3-4 months.

I don't know, but I have a feeling that Japanese market is really being targeted by some groups - state sponsored hacks, I just had this feeling though, I won't mentioned names but I'm sure most of you know who am I referring to.

Anyways, I wouldn't say that they are incompetent, they know that their country has accepting crypto and I'm sure they know a thing or two or at least learn the lessons from past Japanese exchange hacks.

Cheap is indeed expensive and It's too late to act now.
So these guys have known that cold wallets are way more safer than whatever options they have but still went on with hot wallets knowing very well that such wallets are easy targets.

Now a lumpsome has been lost when a few dollars worth of cold wallets would have saved them all this inconvenience or am being short sighted this could have been an inside job and they are trying to save themselves the embarrassment by selling us such a story, because by now we should have learnt from other people's mistakes who have gone through this before.

Now they want to play detective by following the money trail, SMH.

Bitpoint Reveals Amounts Stolen, Pledging to Reimburse Users in Crypto


https://cointelegraph.com/news/bitpoint-reveals-amounts-stolen-pledging-to-reimburse-users-in-crypto

Japanese exchange Bitpoint has published the breakdown of crypto assets stolen in the 3 billion yen (~$27.8 million) hack of its platform earlier this month.

A document published by Bitpoint’s parent firm Remix Point Inc. on July 16 reveals that five crypto assets in total were stolen by the attackers. The breakdown provided by the company compares the proportion of stolen customer assets with assets belonging to the firm:

    1,225 Bitcoin (BTC) worth 15.3 billion yen — 1.28 billion yen belonging to customers and 250 million to the firm;
    1,985 Bitcoin Cash (BCH) worth 70 million yen — 40 million yen (customers) and 0.2 billion yen (firm);
    11,169 Ether (ETH) worth 330 million yen — 240 million yen (customers) and 0.8 billion (firm);
    5,108 Litecoin (LTC) — 0.5 billion yen, of which 40 million yen (customers) and 0.0 billion yen (firm); 28,106,323 XRP — 10.02 billion yen, of which 2.6 billion yen (customers) and 960 million yen (firm).

Out of the 3.02 billion yen stolen in cryptocurrencies overall, 2.6 billion yen belonged to customers and 960 million yen were company assets. XRP accounted for the highest share of total losses, with stolen XRP accounting for over 10 billion yen — roughly a third of the lost funds.

Bitpoint has moreover revealed its plans to compensate customers in cryptocurrencies rather than in their equivalent fiat value.

The exchange reiterates its belief that the breach occurred due to unauthorized access to the private keys of its hot wallets, and that it now plans to move all holdings into cold storage.

It confirms that no breach of its cold wallets has been detected, but states that it continues to monitor the situation and is also suspending all services until more comprehensive security measures have been undertaken and the firm has completed its tracking of the stolen funds.

The document reveals that Bitpoint is cooperating with the Japan Virtual Currency Exchange Association (JVCEA) — a self-regulatory crypto exchange association that formed in March 2018 to help establish industry-wide investor protection standards — and has requested that the association monitor any suspected ill-gotten funds and wallets potentially associated with the incident. The exchange is also reportedly in close communication with the Ripple Foundation.

As reported yesterday, Bitpoint discovered over 250 million yen ($2.3 million) in crypto that was stolen during the hack, bringing the total sum of lost funds down to its initial estimate of 3.5 billion yen ($32 million) to 3.02 billion yen ($28 million).

Agreed. Someone can also threaten an employee or the employee's family to force him to do whatever the criminals want within the exchange.

I always welcome more competition. It helps improving the services exchanges provide and also makes them cheaper to use for people.

It's likely the regulatory climate there starts to become stricter due to how governments slowly but surely catch up on the developments happening within their country. Especially in Asian countries capital control is a very big deal. Crypto makes it way easier to circumvent them, hence the governments there are subjecting the exchanges to strict regulations.

Another reason could be the insane capital gains taxes people in the different countries pay there. Depending on the country and the hight of profits, you might end up paying 50% of your profits straight to the government.

It is very easily possible, imagine yourself in a situation when you have access to dozens or hundreds millions $, and you can hack them anytime. Some simply can not resist to such temptation, and if they are smart enough until it is discovered who is the true culprit, they may be far from the reach of justice.

Crypto exchanges should pay more attention to their employees, they are in most cases the weakest link in the security chain.

Too many exchange on a certain region isn't really that necessary but these owners do see that this is a profitable business that's why they do hurry up on creating one.I agree with your point which due to rushing of things which in result into poor security aspect.One more question,why people on that certain area tends to use that local exchange rather than going into the top exchange rankings?

Also, that China was the cheap copycat of Japanese products. Today, most Japanese products are made in China hehe.

In any case, I reckon this might be another inside job. Yakuza hehe?

It's not necessarily that these countries are a target, but more so that these countries are such a big player in the exchange market. There are so many exchanges there that it's quite normal for these countries pop up more than other countries in this negative aspect. Another contributing aspect is the rapid growth in that region where exchanges rush to go online but with lesser overall security unfortunately.

I'm not even wondering how people can be so stupid to leave their precious coins at an exchange. I know people are messed up in the head. They won't change.

The hackers are still at it...
It's like every other week there is an exchange being robbed.

At least I never heard of the exchange until now. If it was binance again, then i'd be a tad worried about the markets.

One of the arguments for Japan's licensing scheme was to make sure the exchange security setups were robust enough to protect Japanese investors. A lot of good that did, eh?

Expensive licenses make for huge barriers to market entry, but it doesn't create competent exchanges...

With another exchange falling victim in Japan I think they already have more than 3 strikes already to say that they don't need a change when it comes to their crypto exchange regulation. I know that they have recently changed it in the oast but by doing so they have give new licenses to new exchanges so that's one to consider that their enforcement is not enough to control and monitor several exchanges in the country. At this point the Japanese government needs ti step in as their citizens are severely affected by it.