Pages:
Author

Topic: More than 10 percent of $3.7 billion raised in ICOs has been stolen: Ernst & You - page 2. (Read 321 times)

full member
Activity: 266
Merit: 111
This is quite alarming because it says that possiibilities of future crypto hackers can actually steal or savings I think this is an eye opener to developers to become more strict in providing good protection from hackers and also create more strong authentication.It is also a good thing that auditing firms are now starting to look into cryptos they can really give a big help.
legendary
Activity: 1176
Merit: 1005
Decentralized Asset Management Platform
Phishing attacks are getting more sophisticated and people are negligible their security.

According to Google, only 10% are using some kind of 2FA. I guess in crypto community the percentage is higher, but still this is one of the main reason phishing attacks to be successful.
sr. member
Activity: 840
Merit: 254
Quote
NEW YORK (Reuters) - More than 10 percent of funds raised through “initial coin offerings” are lost or stolen in hacker attacks, according to new research by Ernst & Young that delves into the risks of investing in cryptocurrency projects online.

The professional services firm analyzed more than 372 ICOs, in which new digital currencies are distributed to buyers, and found that roughly $400 million of the total $3.7 billion funds raised to date had been stolen, according to research published on Monday.

Phishing was the most widely used hacking technique for ICOs, with hackers stealing up to $1.5 million in ICO proceeds per month, according to the report.

The research also noted that the volume of ICOs has been slowing since late 2017. Less than 25 percent of ICOs reached their target in November, compared with 90 percent in June.

The study comes amid a cryptocurrency investing craze, with young companies raising hundreds of millions of dollars online to fund their projects, with often little more than a handful of employees and a business plan outlined in a so-called “white paper”.

The challenges faced by more recent ICOs in reaching their targets are partly attributable to the lower quality of projects, as well as issues that have emerged around earlier projects, said Paul Brody, global innovation leader for blockchain technology at Ernst & Young (EY).

“The volume just exploded, people raised their fundraising goals and the quality just dropped,” Brody said in an interview.

“We were shocked by the quality of some of the white papers, we see clear coding errors and we see conflicts of interest between the companies issuing tokens and the community of token holders.”

In ICOs companies typically raise money to build new technology platforms or to fund businesses that use cryptocurrencies, also called tokens, and blockchain, the software that underpins them. Yet for many of these projects the need for blockchain and cryptocurrencies is often unjustified, according to EY.

It also noted valuations of ICO tokens are often driven by “fear of missing out”, or “FOMO”, and have no connection to market fundamentals such as project development. EY said “FOMO” has led investors to pour money into ICOs at record speeds, with the 10 shortest lasting ICOs attracting $300,000 per second on average.

The study also found several instances in which the underlying software code of a project contained hidden investment terms that had not been disclosed, or contradicted previous disclosures. For example, a whitepaper might state that there will be no further issuance of a cryptocurrency, while the code might leave that option open.

https://www.reuters.com/article/us-ico-ernst-young/more-than-10-percent-of-3-7-billion-raised-in-icos-has-been-stolen-ernst-young-idUSKBN1FB1MZ

Its hard to believe phishing is still a valid attack, much less the most successful attack vector utilized to steal money from ICO's.

(I wonder if some of the more shady ICO's raise money, then steal it from themselves to generate income.  Cheesy Cheesy Cheesy)

$400 million is a lot of money. Seems like it pays to be a hacker these days. I should have studied harder to be a hacker in school.

Phishing may be be basic but it is effective, I invested in an ico some months ago, and in the telegram channel and slack there were a lot of phishing and social engineering attacks, the devs gave a warning and identified themselves to try to stop those attacks but there were many coins stolen and things only got worse when people tried to sell their coins because the price took a nosedive after the ico.
member
Activity: 110
Merit: 10
If its only 10% it's worth the risk.

But i don't think its true. Most ICOs that did see the sun where scams. In fact they all are into a certain point, but the earning may pay for that risk.

I will go to 10% hackers and 40% that don't end the ICO and vanish with the money.

Plus more 30% that are not profitable and that leaves you with 20 % ICOs that can live.

From those 20%, 15% are controlled by teams that don't know what to do in the right time and are always changing the roadmap.

This, leaves 5 % that you can get a goo profit. Just need to find them in the jungle.

And take the money asap to not get scamed, don't forget!!
sr. member
Activity: 644
Merit: 259
CryptoTalk.Org - Get Paid for every Post!
Quote
NEW YORK (Reuters) - More than 10 percent of funds raised through “initial coin offerings” are lost or stolen in hacker attacks, according to new research by Ernst & Young that delves into the risks of investing in cryptocurrency projects online.

The professional services firm analyzed more than 372 ICOs, in which new digital currencies are distributed to buyers, and found that roughly $400 million of the total $3.7 billion funds raised to date had been stolen, according to research published on Monday.

Phishing was the most widely used hacking technique for ICOs, with hackers stealing up to $1.5 million in ICO proceeds per month, according to the report.

The research also noted that the volume of ICOs has been slowing since late 2017. Less than 25 percent of ICOs reached their target in November, compared with 90 percent in June.

The study comes amid a cryptocurrency investing craze, with young companies raising hundreds of millions of dollars online to fund their projects, with often little more than a handful of employees and a business plan outlined in a so-called “white paper”.

The challenges faced by more recent ICOs in reaching their targets are partly attributable to the lower quality of projects, as well as issues that have emerged around earlier projects, said Paul Brody, global innovation leader for blockchain technology at Ernst & Young (EY).

“The volume just exploded, people raised their fundraising goals and the quality just dropped,” Brody said in an interview.

“We were shocked by the quality of some of the white papers, we see clear coding errors and we see conflicts of interest between the companies issuing tokens and the community of token holders.”

In ICOs companies typically raise money to build new technology platforms or to fund businesses that use cryptocurrencies, also called tokens, and blockchain, the software that underpins them. Yet for many of these projects the need for blockchain and cryptocurrencies is often unjustified, according to EY.

It also noted valuations of ICO tokens are often driven by “fear of missing out”, or “FOMO”, and have no connection to market fundamentals such as project development. EY said “FOMO” has led investors to pour money into ICOs at record speeds, with the 10 shortest lasting ICOs attracting $300,000 per second on average.

The study also found several instances in which the underlying software code of a project contained hidden investment terms that had not been disclosed, or contradicted previous disclosures. For example, a whitepaper might state that there will be no further issuance of a cryptocurrency, while the code might leave that option open.

https://www.reuters.com/article/us-ico-ernst-young/more-than-10-percent-of-3-7-billion-raised-in-icos-has-been-stolen-ernst-young-idUSKBN1FB1MZ

Its hard to believe phishing is still a valid attack, much less the most successful attack vector utilized to steal money from ICO's.

(I wonder if some of the more shady ICO's raise money, then steal it from themselves to generate income.  Cheesy Cheesy Cheesy)

$400 million is a lot of money. Seems like it pays to be a hacker these days. I should have studied harder to be a hacker in school.

Phishing please, that is indeed the most novice ways to hack and if the ICO's wants us to believe that they were compromised because of Phishing, then indeed they are very much lying. Since this is a theft,  think the proper securities should be made aware of it so that they can give the investors exactly what happens.
hero member
Activity: 966
Merit: 507
These figures seem to be underestimated. I bet the real number is unfortunately much more than 10%. Nice article though.
legendary
Activity: 2562
Merit: 1441
Quote
NEW YORK (Reuters) - More than 10 percent of funds raised through “initial coin offerings” are lost or stolen in hacker attacks, according to new research by Ernst & Young that delves into the risks of investing in cryptocurrency projects online.

The professional services firm analyzed more than 372 ICOs, in which new digital currencies are distributed to buyers, and found that roughly $400 million of the total $3.7 billion funds raised to date had been stolen, according to research published on Monday.

Phishing was the most widely used hacking technique for ICOs, with hackers stealing up to $1.5 million in ICO proceeds per month, according to the report.

The research also noted that the volume of ICOs has been slowing since late 2017. Less than 25 percent of ICOs reached their target in November, compared with 90 percent in June.

The study comes amid a cryptocurrency investing craze, with young companies raising hundreds of millions of dollars online to fund their projects, with often little more than a handful of employees and a business plan outlined in a so-called “white paper”.

The challenges faced by more recent ICOs in reaching their targets are partly attributable to the lower quality of projects, as well as issues that have emerged around earlier projects, said Paul Brody, global innovation leader for blockchain technology at Ernst & Young (EY).

“The volume just exploded, people raised their fundraising goals and the quality just dropped,” Brody said in an interview.

“We were shocked by the quality of some of the white papers, we see clear coding errors and we see conflicts of interest between the companies issuing tokens and the community of token holders.”

In ICOs companies typically raise money to build new technology platforms or to fund businesses that use cryptocurrencies, also called tokens, and blockchain, the software that underpins them. Yet for many of these projects the need for blockchain and cryptocurrencies is often unjustified, according to EY.

It also noted valuations of ICO tokens are often driven by “fear of missing out”, or “FOMO”, and have no connection to market fundamentals such as project development. EY said “FOMO” has led investors to pour money into ICOs at record speeds, with the 10 shortest lasting ICOs attracting $300,000 per second on average.

The study also found several instances in which the underlying software code of a project contained hidden investment terms that had not been disclosed, or contradicted previous disclosures. For example, a whitepaper might state that there will be no further issuance of a cryptocurrency, while the code might leave that option open.

https://www.reuters.com/article/us-ico-ernst-young/more-than-10-percent-of-3-7-billion-raised-in-icos-has-been-stolen-ernst-young-idUSKBN1FB1MZ

Its hard to believe phishing is still a valid attack, much less the most successful attack vector utilized to steal money from ICO's.

(I wonder if some of the more shady ICO's raise money, then steal it from themselves to generate income.  Cheesy Cheesy Cheesy)

$400 million is a lot of money. Seems like it pays to be a hacker these days. I should have studied harder to be a hacker in school.
Pages:
Jump to: