Jump to content

Are there security measures that CEXs can put in place to cub the activities of hackers?


Recommended Posts

It's worrisome to see that just after 2 months of rebranding and celebration of 10th year anniversary which saw Huobi transformed to HTX, the exchange has suffered a major hack. Of course the CEX name didn't settle well with users when the name was unveiled in September as many question the similarity between the new name and the defunct FTX and it's already looking as if users guesses were right afterall.

What is more worrisome is that just a few weeks back precisely Nov 10, poloniex exchange also suffered a hack with losses estimated at over $100 million in cryptocurrency. Putting this vis a vis with the HTX and Heco chain hack with an estimated loss of over $115 million, we are talking of a combined $215 million loss in users funds.

Despite the compensation plans announced by this CEX, I couldn't help but think why not implement the "prevention is better than cure" strategy. After the 2016 Bitfinex hack, I think exchanges should have learnt and implement more robust security measures but it's sad that 7 years later, we are still discussing security breaches in a sector that has the most glaring technology (Blockchain).

At this point am curious to know if there are exchanges immune to this hacks and are there any measures they put in place? I also think integrity test should be conducted for exchange owners but the question is how can this be achieved in an industry that is not being regulated. Share your views and let's discuss.

Link to comment

Smart contract fraud and wallet address hackers just like internet fraudsters can only be checked if there's constant monitoring of the space, upgrading security architecture continuously and practice safe browsing. some other exchanges have maintained a healthy state of exchange security over the past couple of years like Bitget and Upbit even when there's been several attempts.

Link to comment

Exchanges are now implementing mandatoty KYC in an effort to increase security and protect users. Some exchanges have even implemented asset protection funds like the SAFU on Binance and the asset protection fund on Bitget, to further boost users confidence and show increased commitment to protecting users funds.

Link to comment

In addition to the above listed by various contributors, I guess  implementing these unique security measures might help in mitigating the activity of hackers:

equiring users to enable 2FA adds an extra layer of security by verifying their identity through an additional authentication factor, such as a mobile app or SMS code.

Cold Storage: Storing a significant portion of customer funds offline in cold wallets or offline storage devices helps protect them from online hacking attempts.

Utilizing multi-signature wallets requires multiple authorized signatures to complete transactions, reducing the risk of unauthorized access or fraudulent activity.

Enabling IP whitelisting allows users to specify trusted IP addresses from which they can access their accounts, restricting access from unknown or suspicious IPs.

Employing advanced monitoring systems and intrusion detection tools helps detect and respond to potential security breaches promptly.

Conducting routine security audits by independent third-party firms helps identify vulnerabilities, assess risk, and implement necessary security enhancements.

Some exchanges offer insurance coverage to protect customer funds in the event of a security breach or hack, providing an additional layer of financial protection. (e.g the recently launch $300M plus Bitget protective)

These security measures, combined with continuous monitoring, employee training, and adherence to industry best practices, can significantly enhance the security posture of CEXs.

Link to comment
6 hours ago, XTRAVAGANZA said:

Exchanges are now implementing mandatoty KYC in an effort to increase security and protect users. Some exchanges have even implemented asset protection funds like the SAFU on Binance and the asset protection fund on Bitget, to further boost users confidence and show increased commitment to protecting users funds.

Yeah, a lot is happening particularly with exchanges and platforms that are user centric and i feel in no distance time the situation could be reduced to the barest minimum. 

Link to comment
On 26/11/2023 at 23:57, BashJasper said:

Smart contract fraud and wallet address hackers just like internet fraudsters can only be checked if there's constant monitoring of the space, upgrading security architecture continuously and practice safe browsing. some other exchanges have maintained a healthy state of exchange security over the past couple of years like Bitget and Upbit even when there's been several attempts.

It all boils down to the exchange's dedication to protect customers' assets. Apparently these exchanges that haven't recorded any hacks for 5+ years of functioning like the case of the first exchange you mentioned, are working behind the scene to make it happen. HTX and the likes need to do more and save the industry’s reputation already. 

Link to comment
On 26/11/2023 at 08:48, Wakanda said:

It's worrisome to see that just after 2 months of rebranding and celebration of 10th year anniversary which saw Huobi transformed to HTX, the exchange has suffered a major hack. Of course the CEX name didn't settle well with users when the name was unveiled in September as many question the similarity between the new name and the defunct FTX and it's already looking as if users guesses were right afterall.

What is more worrisome is that just a few weeks back precisely Nov 10, poloniex exchange also suffered a hack with losses estimated at over $100 million in cryptocurrency. Putting this vis a vis with the HTX and Heco chain hack with an estimated loss of over $115 million, we are talking of a combined $215 million loss in users funds.

Despite the compensation plans announced by this CEX, I couldn't help but think why not implement the "prevention is better than cure" strategy. After the 2016 Bitfinex hack, I think exchanges should have learnt and implement more robust security measures but it's sad that 7 years later, we are still discussing security breaches in a sector that has the most glaring technology (Blockchain).

At this point am curious to know if there are exchanges immune to this hacks and are there any measures they put in place? I also think integrity test should be conducted for exchange owners but the question is how can this be achieved in an industry that is not being regulated. Share your views and let's discuss.

Because of this, it's wise for traders to thoroughly investigate exchanges before choosing one. I exclusively deal with cryptocurrency exchanges that have declared proof of reserve in the wake of the unfortunate events that saw some go bankrupt and others hack. Because of what I've heard traders say about Bitget and the fact that it met my requirements, I had to start using it right away. Therefore, I'd advise DYOR to choose whatever best meets your needs.

Link to comment
8 hours ago, Incarts said:

It all boils down to the exchange's dedication to protect customers' assets. Apparently these exchanges that haven't recorded any hacks for 5+ years of functioning like the case of the first exchange you mentioned, are working behind the scene to make it happen. HTX and the likes need to do more and save the industry’s reputation already. 

Not just HTX but including others that have been affected with this deficiency IMHO. 

Link to comment

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • image.png

  • Posts

    • Thank you for the reply. This may not be the case, the market clearly says it is closed when I try to place a trade. Effectively meaning I am unable to trade outside of the hours specified!
    • Apple’s recent stock weakness marks a divergence with other members of the Magnificent 7 and the broader Nasdaq 100. Source: Bloomberg   Indices Shares Apple Inc. Artificial intelligence Price iPhone Written by: Chris Beauchamp | Chief Market Analyst, London   Publication date: Friday 01 March 2024 13:26 AI Efforts in Question Apple's stock fell below $180 on Thursday for the first time since early-November, underperforming the broader market. While the S&P 500 and tech-heavy Nasdaq indices posted solid gains, Apple shares slipped around 1%. Source: Google Finance The decline comes as doubts loom about Apple's artificial intelligence (AI) initiatives. Rivals like Microsoft are delivering strong earnings growth tied to burgeoning AI technology. This was highlighted by Tuesday's report that Apple is discontinuing its decade-long electric vehicle project. Back in 2017, Apple CEO Tim Cook called the autonomous car endeavour the "mother of all AI projects." Stock Underperforms Broader Market So far in 2024, Apple shares have dropped 3%, trailing the S&P 500's 7% gain and the Nasdaq's 9% climb. Despite its long-term market-beating returns, Apple has recently lagged the S&P 500 on 6-month, 1-year, and 2-year timeframes, according to FactSet data. After spending most of 2021 to 2023 as the world's most valuable public company by market capitalization, Apple surrendered that crown to Microsoft in January. Microsoft's sales and profit growth have far outpaced Apple's, which posted negative growth in its 2022 fiscal year ending last September. AI Investment Hints but Details Lacking At Wednesday's shareholder meeting, Cook suggested Apple is "investing significantly" in generative AI. He said more specifics will be announced later this year. UBS analyst David Vogt predicts Apple's first major AI launch will come in June at its annual Worldwide Developers Conference. iPhone Sales Weakness Looms In addition to AI uncertainties, expectations for weak iPhone sales growth continue to weigh on Apple. iPhones accounted for 58% of Apple's total revenue last quarter. Some See Positives in Car Project Halt Some analysts see a silver lining in the halt of Apple's electric car plans. It enables the company to refocus AI talent on nearer-term products with greater market potential. To Morgan Stanley, it also shows Apple's "cost discipline." Apple analyst rating LSEG (formerly known as Refinitiv) data shows a consensus analyst rating of ‘buy’ for Apple with 10 strong buy, 17 buy, 13 hold and 2 sell – and a mean of estimates suggesting a long-term price target of $201.41 for the share, roughly 16% higher than the current price (as of 1 March 2024). Source: LSEG Technical outlook on the Apple share price The Apple share price continues to precariously weigh on its $180.30 to $179.25 support zone which consists of the January-to-February lows. A fall through and daily chart close below this area looks increasingly likely and would lead to levels being reached which were last traded in early-November with the 3 November low at $176.65 representing the first downside target. Apple Daily Candlestick Chart Source: TradingView Further down sits the $174.49 August low below which key support can be spotted between the September and October lows at $167.62 to $165.67. Were the $180.30 to $179.25 support zone to hold, though, a rise and daily chart close above last week’s high at $185.04 would need to occur, for a recovery off the support area to gain traction. In this scenario the Apple share price would trade back above its 200-day simple moving average (SMA) at $183.90 and target the 55-day SMA at $188.50. This will continue to favour a fall through support at $179.25 to take place as long as the Apple share price continues to trade below last week’s high at $185.04.     This information has been prepared by IG, a trading name of IG Markets Limited. In addition to the disclaimer below, the material on this page does not contain a record of our trading prices, or an offer of, or solicitation for, a transaction in any financial instrument. IG accepts no responsibility for any use that may be made of these comments and for any consequences that result. No representation or warranty is given as to the accuracy or completeness of this information. Consequently any person acting on it does so entirely at their own risk. Any research provided does not have regard to the specific investment objectives, financial situation and needs of any specific person who may receive it. It has not been prepared in accordance with legal requirements designed to promote the independence of investment research and as such is considered to be a marketing communication. Although we are not specifically constrained from dealing ahead of our recommendations we do not seek to take advantage of them before they are provided to our clients. See full non-independent research disclaimer and quarterly summary.
    • PG Elliott Wave Analysis Trading Lounge Daily Chart, 1 March 24 The Procter & Gamble Company, (PG) Daily Chart PG Elliott Wave Technical Analysis FUNCTION: Trend MODE: Impulse STRUCTURE: Motive POSITION: Minuette wave (ii) of {iii}. DIRECTION: Bottom in wave (ii).   DETAILS: As we are approaching ATH at 165$, we are expecting either an acceleration higher into wave (3) or else we could have topped in wave (C) to then fall back lower and continue the major correction.         PG Elliott Wave Analysis Trading Lounge 4Hr Chart, 1 March 24 The Procter & Gamble Company, (PG) 4Hr Chart PG Elliott Wave Technical Analysis FUNCTION: Counter Trend MODE: Corrective STRUCTURE: Zigzag   POSITION: Wave a of (ii).   DIRECTION: Downside into wave (ii). DETAILS: Looking for a clear three wave move into wave (ii) to finding support around the 155$ mark.   Welcome to our PG Elliott Wave Analysis Trading Lounge, your ultimate destination for detailed insights into The Procter & Gamble Company (PG) using Elliott Wave Technical Analysis. As of the Daily Chart on 1 March 24, we dive into crucial trends shaping the market.         *PG Elliott Wave Technical Analysis – Daily Chart* In terms of wave dynamics, we identify a trend function with an impulse structure, specifically a motive pattern. The current position is in Minuette wave (ii) of {iii}, indicating a potential bottom in wave (ii). With the approaching all-time high (ATH) at $165, we anticipate either an upward acceleration into wave (3) or a potential top in wave (C), followed by a downward movement to continue the major correction. *PG Elliott Wave Technical Analysis – 4Hr Chart* Here, we explore a counter trend mode with a corrective structure, specifically a zigzag pattern. The present position is in Wave a of (ii), suggesting downside movement into wave (ii). We anticipate a clear three-wave move into wave (ii), aiming to find support around the $155 mark.  
×
×
  • Create New...
us