The Big Q: Why are Crypto Exchanges Vulnerable to Hacks?
Blockchain technology can make transactions safe and secure, but crypto-currency exchanges that trade Bitcoins and other virtual currencies that are based on this technology have been hacked because they are not working on secure networks.
The Coincheck exchange has halted trading of the stolen currency, NEM and restricted dealings in most other crypto currencies. It was the 2nd major hacking assault on a Japanese crypto exchange after the Mt. Gox debacle in Y 2014.
Below is a look at the security concerns surrounding crypto currencies, as follows
Blockchain is a chain of digital “blocks” that contain records of transactions, says Curtis Miles at IBM Blockchain. Each such block is connected to those before and behind it, making it difficult to tamper with because a hacker would need to change the block containing that record and all those linked to it to avoid detection.
Join the Channel Now, Click Here
The records on a blockchain are secured through cryptography and network participants have their own private keys that are assigned to the transactions they make and act as personal digital signatures. Any alteration will make those signatures invalid and alert others in the network to the changes.
Blockchains are kept in so-called “peer-to-peer” networks that are continually updated and kept in synchronization. It would require huge amounts of computing power to access every instance of a certain blockchain and alter all its blocks at the same time.
While a blockchain can be secure, the exchanges that play a crucial role in increasing the amount of crypto trading, enabling Bitcoin and other such currencies go mainstream, do not use the same technology.
SKorean exchanges reportedly get poor reviews for cyber security, and officials have said those that fail to beef up such precautions will face fines.
If security on the exchanges’ is not secure, their currencies can be stolen. If the exchanges are to play their intermediary role, they should be as safe as banks and strengthen their security.
According to crypto currency research firm Chainalysis, losses of Bitcoin, including stealing individuals’ holdings through scams, malicious computer software known as ransom ware and hacks, increased at least 30X to $95-M in Y 2016 from at least $3-M in Y 2013.
The attack on Coincheck, which did not affect its holdings of Bitcoin, was the 2nd major hacking assault on a Japanese crypto exchange after Mt. Gox, the world’s largest Bitcoin trading exchange before its collapse, lost hundreds of thousands of Bitcoins likely stolen through hacking.
Coincheck has apologized and promised to reimburse customers for their NEM losses. It has pledged to comply with a Financial Services Agency’s order to determine why the losses happened, and improve its security to prevent a recurrence.
Details of how the losses happened or who might be behind them are still unclear.
The Mt. Gox case put many Japanese investors off Bitcoin, at least for a time, and prompted authorities to impose more regulations.
Chainalysis estimates that the Bitcoins lost at Mt. Gox were worth $7.5-M at the time the coins were stolen but now worth nearly $10-B, as of January 2018.
Currently, Bitcoin is trading at: 10,959.2354, -42.7695, or -0.39%, as of 6:08a GMT, the market is open.
It is possible to trace blockchain transactions but not to identify the owners of the “wallets” where the crypto currencies are kept.
It is the biggest weakness. You can track the blocks based on the records in the blocks but you cannot tell whose wallet it is. They went to hackers’ wallet, but if we do not know who the hackers are we cannot catch them, one expert said.
The rising hacks have prompted the crypto community to seek ways to halt the bad guys.
SKorea’s government is trying to make crypto transactions traceable by implementing a system that links crypto accounts to existing bank accounts that have been vetted by financial institutions. Such efforts however will not help identify hackers if they send crypto currencies to exchanges outside Korea that do not identify their users.