Coinbase publicly acknowledges that 3,420 user information is threatened by registration vulnerability

According to foreign media, Coinbase Exchange acknowledged in its latest blog post that a vulnerability in their system could cost Coinbase users a lot of money.

Security-265130_1280

Image source:

Coinbase admitted

Last Friday's "post-event survey" showed that an error on the Coinbase registration page saved the client's information on the Coinbase internal web server log in clear text. Therefore, for the staff of the San Francisco-based cryptocurrency company, if the password is "123456", then they see "123456". Ideally, they should have been hashed into unreadable text.

Coinbase acknowledged that the vulnerability affected a total of 3,420 customers. The following are excerpts from their speeches:

"In the case of [very special] and rare errors, the registration form on the registration page does not load properly, which means that any attempt to create a new Coinbase account under these conditions will fail. Unfortunately, this also means The personal name, email address and suggested password (and residency status, if in the US) will be sent to our internal log."

The exchange said that the password and other details of the user who resubmitted the form were securely encrypted. Unfortunately, the 3,420 customers mentioned above accidentally logged their private data to the Coinbase server.

Coinbase discovered a password vulnerability: Coinbase, one of the largest exchanges in the cryptocurrency industry, discovered a vulnerability that could affect 3,420 users. According to a blog post by Coinbase, the registration page finally stores the user account registration information. – August 18, 2019, Nacho Sanzu© (@morodog

No user funds damaged report

Coinbase behaves like a good old man, putting this issue at the top of the list. The company claims that they tracked the entire storage line to confirm that no personal information was stored for any customers.

Coinbase wrote:

“We hosted an internal logging system in AWS, as well as a small number of log analytics service providers. Access to all of these systems was severely restricted and audited. We thoroughly checked access to these logging systems and found no Any unauthorized access to these data."

The company also reset passwords for affected customers. The company claims that passwords alone prevent potential hackers from stealing their bitcoins and explain that they protect each account with mandatory email and 2FA certification.

“We keep a very high standard to ensure the safety of the Coinbase platform. When we are slightly below these standards, we will mobilize a team to find out where the problem is and how to prevent it from happening again. We also believe in us. Our customers remain transparent, which is why we share our findings today."

Coinbase is still safe

At the time Coinbase issued this warning, institutional investors are taking concrete steps to include Bitcoin in their portfolio. However, considering that cryptocurrency allows hackers to steal billions of dollars worth of assets under their eyes, security is still one of their biggest concerns.

Coinbase has never been reported to have been hacked. The exchange has commercial and criminal insurance – the total amount exceeds the value of the digital currency it stores online.

We will continue to update Blocking; if you have any questions or suggestions, please contact us!

Share:

Was this article helpful?

93 out of 132 found this helpful

Discover more

Blockchain

Bella Fang: The exchange is at the top of the food chain. How can small and medium-sized projects seize this channel?

On the afternoon of the 9th, at the 2nd Global Blockchain Summit·Wuzhen site hosted by Babbitt, Bella Fang, foun...

Blockchain

Discussing the SEC's lawsuit against Binance: Years of regulatory balance disrupted, optimistic about the final outcome

Currently, the SEC and Binance's feud only reflects one fact: the imbalanced "ambiguous" regulatory relationship in t...

Blockchain

How does the derivatives market fight on the platform of the 5-year-old exchange?

Derivatives trading has become a battleground for the military, and OKex, Huobi, Gate, Fcoin, which are well-known ex...

Policy

BlockFi Emerges from Bankruptcy, Ready to Pay Back Creditors and Recover Assets

In November, popular crypto lending platform BlockFi made headlines for their bankruptcy filing caused by the FTX con...

Blockchain

A number of exchanges will openly call the FATF proposal at the G20 opening meeting

The G20 summit of the G20, which everyone is paying attention to, will be held on June 28 and 29, 2019 in Osaka, Japa...

Blockchain

How terrible is the IEO? 62% of 87 projects broke, with a maximum loss of 99%

87 IEO projects, raising more than 2 billion, 62% broken "Bitcoin is about to plummet to $5,000." "Cry...