Home Coins Bitcoin (BTC) Most crypto exchanges are vulnerable by design, says ByBit CEO

Most crypto exchanges are vulnerable by design, says ByBit CEO

Crypto exchange security is once again in the news after hackers breached KuCoin. But this shouldn’t surprise people as exchanges are vulnerable by design, according to ByBit CEO Ben Zhou. 

Zhou told Cointelegraph that exchanges act as a single point of failure. As a centralized web application, exchanges are susceptible to the same security issues as all other websites. 

Security becomes even more important as investors and traders are increasingly taking exchanges to task to protect funds. 

The vast majority of crypto exchange servers and storage networks, Zhou said, keep digital currencies in hot wallets. If hot wallets are not properly protected, then this opens them up to theft. Zhou thinks that a cold wallet system is more secure since hot wallets are connected to the internet, making them more vulnerable to hacking. Cold wallets, on the other hand, are not connected online. The only downside is not being able to make large withdrawals from an exchange immediately.

According to Zhou, investing in security should be one of the highest priorities on an exchange platform’s agenda, especially if it operates online. To combat potential hacking threats, exchanges also need to better address vulnerable areas and apply multiple security layers for penetration testing. 

Any security system should also protect information across all points of interaction. This means protecting user data from account registration, login, trading, and any information exchange with the platform. Zhou added that:

“This can be accomplished by applying best practices for application lifecycle management, hiring knowledgeable and reputable security consultants for penetration testing and running bounty programs within the white hat community to identify any potential vulnerabilities.” 

Zhou also recommends cryptocurrency exchanges work with reputable security firms to carry out security audits, apply strict management processes, and invest in zero-trust architecture. Zero-trust architecture requires verification for anyone accessing a service to prevent any potential data breaches both internally and externally. 

He said there are several bespoke security solutions from third-party vendors that exchanges can use but noted these could also be developed in-house.

Zhou revealed that ByBit invested considerable resources in developing and enhancing its own security protocols and solutions. They have implemented a multi-signature cold wallet system to protect the safety of users’ funds. ​

When it comes to combating potential hacking threats, ByBit organized and conducted multiple red alert scenarios and bounty programs with the white hat hacker community. This is to ensure there are no system vulnerabilities. Zhou added that: 

“Even when it comes to withdrawals, we subject any requests to at least three layers of risk-control verifications. Crypto asset consolidation among cold wallets follows the strictest policy, including physical environment security, system security, encryption techniques, operation authentication, monitoring and audit.” 

As Cointelegraph previously reported, the recent crypto twitter hack was a wake-up call for centralized platforms to address online security issues. 

First published here

- Advertisement -
Mr Bitcointe
Mr Bitcointehttps://www.bitcointe.com/
“Fact You Need To Know About Cryptocurrency - The first Bitcoin purchase was for pizza.” ― Mohsin Jameel
474FansLike
76FollowersFollow
4,567FollowersFollow
5,261FollowersFollow
1,548FollowersFollow
2,230SubscribersSubscribe
USD - United States Dollar
EUR
1.18
GBP
1.30
CHF
1.10
NOK
0.11
JPY
0.01
CAD
0.75
AUD
0.70

Most Popular

MakerDAO issues warning after a flash loan is used to pass a governance vote

The team behind a DeFi protocol wanted white-list access MakerDAO’s price oracle. And to make it happen, they used a flash loan to...

Cambodia launches inter-banking platform that runs on blockchain

Amid a global race toward central bank digital currencies, or CBDCs, Cambodia officially launched a blockchain-based platform for digital money transactions called Bakong. "Bakong,...

Gangnam Testnet Opens (ICON 2.0). Java SCORE Guidelines | by ICON Foundation | Hello ICON World | Oct, 2020

Java SCORE GuidelinesGreeting ICONists,We are excited to announce the launch of the Gangnam testnet and the guidelines below.Gangnam testnet is powered by Goloop (ICON...
bitcoin
Bitcoin (BTC) $ 13,237.95
ethereum
Ethereum (ETH) $ 387.36
ripple
XRP (XRP) $ 0.246336
tether
Tether (USDT) $ 1.00
bitcoin-cash
Bitcoin Cash (BCH) $ 267.99
bitcoin-cash-sv
Bitcoin SV (BSV) $ 169.17
litecoin
Litecoin (LTC) $ 55.48
eos
EOS (EOS) $ 2.65
binancecoin
Binance Coin (BNB) $ 30.32
okb
OKB (OKB) $ 4.59
tezos
Tezos (XTZ) $ 1.97
leo-token
LEO Token (LEO) $ 1.28
cardano
Cardano (ADA) $ 0.099347
monero
Monero (XMR) $ 125.24
stellar
Stellar (XLM) $ 0.078268
chainlink
Chainlink (LINK) $ 11.34
huobi-token
Huobi Token (HT) $ 4.19
tron
TRON (TRX) $ 0.026805
usd-coin
USD Coin (USDC) $ 0.999884
dash
Dash (DASH) $ 67.79
neo
NEO (NEO) $ 15.88
iota
IOTA (MIOTA) $ 0.268153
nem
NEM (XEM) $ 0.092492
zcash
Zcash (ZEC) $ 56.41
maker
Maker (MKR) $ 536.84
paxos-standard
Paxos Standard (PAX) $ 1.00
ethereum-classic
Ethereum Classic (ETC) $ 5.31
vechain
VeChain (VET) $ 0.010583
true-usd
TrueUSD (TUSD) $ 1.00
ftx-token
FTX Token (FTT) $ 3.75
kucoin-shares
KuCoin Shares (KCS) $ 0.853865
waves
Waves (WAVES) $ 3.04