• bitcoinBitcoin (BTC) $ 115,445.00
  • ethereumEthereum (ETH) $ 4,168.64
  • tetherTether (USDT) $ 1.00
  • bnbBNB (BNB) $ 1,157.61
  • xrpXRP (XRP) $ 2.63
  • usd-coinUSDC (USDC) $ 0.999897
  • staked-etherLido Staked Ether (STETH) $ 4,167.57
  • dogecoinDogecoin (DOGE) $ 0.203177
  • tronTRON (TRX) $ 0.299771
  • cardanoCardano (ADA) $ 0.677230
  • wrapped-stethWrapped stETH (WSTETH) $ 5,075.43
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 4,503.33
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 115,302.00
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.00
  • chainlinkChainlink (LINK) $ 18.54
  • hyperliquidHyperliquid (HYPE) $ 47.34
  • bitcoin-cashBitcoin Cash (BCH) $ 559.72
  • wrapped-eethWrapped eETH (WEETH) $ 4,500.82
  • stellarStellar (XLM) $ 0.326424
  • ethena-usdeEthena USDe (USDE) $ 0.999164
  • suiSui (SUI) $ 2.63
  • usdsUSDS (USDS) $ 1.00
  • wethWETH (WETH) $ 4,170.26
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.999874
  • avalanche-2Avalanche (AVAX) $ 20.60
  • leo-tokenLEO Token (LEO) $ 8.97
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 115,463.00
  • hedera-hashgraphHedera (HBAR) $ 0.178862
  • litecoinLitecoin (LTC) $ 99.04
  • usdt0USDT0 (USDT0) $ 0.999926
  • moneroMonero (XMR) $ 344.34
  • whitebitWhiteBIT Coin (WBT) $ 43.52
  • shiba-inuShiba Inu (SHIB) $ 0.000010
  • zcashZcash (ZEC) $ 357.90
  • the-open-networkToncoin (TON) $ 2.22
  • mantleMantle (MNT) $ 1.70
  • crypto-com-chainCronos (CRO) $ 0.152066
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.20
  • polkadotPolkadot (DOT) $ 3.17
  • daiDai (DAI) $ 0.999624
  • uniswapUniswap (UNI) $ 6.63
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.145373
  • bittensorBittensor (TAO) $ 402.14
  • ethenaEthena (ENA) $ 0.517011
  • aaveAave (AAVE) $ 238.92
  • okbOKB (OKB) $ 168.02
  • memecoreMemeCore (M) $ 2.06
  • susdssUSDS (SUSDS) $ 1.08
  • bitget-tokenBitget Token (BGB) $ 4.83
  • pepePepe (PEPE) $ 0.000007
  • nearNEAR Protocol (NEAR) $ 2.36
  • usd1-wlfiUSD1 (USD1) $ 1.00
  • jito-staked-solJito Staked SOL (JITOSOL) $ 248.49
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • paypal-usdPayPal USD (PYUSD) $ 0.999915
  • solanaWrapped SOL (SOL) $ 200.53
  • ethereum-classicEthereum Classic (ETC) $ 16.50
  • binance-peg-wethBinance-Peg WETH (WETH) $ 4,168.88
  • aptosAptos (APT) $ 3.47
  • ondo-financeOndo (ONDO) $ 0.751977
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 5.63
  • falcon-financeFalcon USD (USDF) $ 0.997675
  • aster-2Aster (ASTER) $ 1.09
  • tether-goldTether Gold (XAUT) $ 4,040.78
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.200597
  • worldcoin-wldWorldcoin (WLD) $ 0.926133
  • pi-networkPi Network (PI) $ 0.247979
  • rocket-pool-ethRocket Pool ETH (RETH) $ 4,775.80
  • arbitrumArbitrum (ARB) $ 0.337950
  • usdtbUSDtb (USDTB) $ 0.999865
  • gatechain-tokenGate (GT) $ 15.44
  • kucoin-sharesKuCoin (KCS) $ 13.68
  • binance-staked-solBinance Staked SOL (BNSOL) $ 216.61
  • htx-daoHTX DAO (HTX) $ 0.000002
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 47.48
  • hash-2Provenance Blockchain (HASH) $ 0.034244
  • story-2Story (IP) $ 5.36
  • internet-computerInternet Computer (ICP) $ 3.19
  • algorandAlgorand (ALGO) $ 0.187703
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 4,405.51
  • pump-funPump.fun (PUMP) $ 0.004613
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 4,403.03
  • kaspaKaspa (KAS) $ 0.057668
  • cosmosCosmos Hub (ATOM) $ 3.22
  • vechainVeChain (VET) $ 0.017476
  • wbnbWrapped BNB (WBNB) $ 1,156.60
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 4,348.16
  • jupiter-exchange-solanaJupiter (JUP) $ 0.441607
  • skySky (SKY) $ 0.059348
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.022041
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 115,230.00
  • pax-goldPAX Gold (PAXG) $ 4,034.17
  • flare-networksFlare (FLR) $ 0.017345
  • bfusdBFUSD (BFUSD) $ 0.999877
  • syrupusdcSyrup USDC (SYRUPUSDC) $ 1.13
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 4,432.12
  • render-tokenRender (RENDER) $ 2.53
  • sei-networkSei (SEI) $ 0.203626
  • official-trumpOfficial Trump (TRUMP) $ 6.20
  • quant-networkQuant (QNT) $ 82.86
  • bonkBonk (BONK) $ 0.000015
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 115,193.00
  • filecoinFilecoin (FIL) $ 1.63
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999599
  • nexoNEXO (NEXO) $ 1.14
  • chainopera-aiChainOpera AI (COAI) $ 5.67
  • xdce-crowd-saleXDC Network (XDC) $ 0.062289
  • morphoMorpho (MORPHO) $ 2.07
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.10
  • immutable-xImmutable (IMX) $ 0.541602
  • spx6900SPX6900 (SPX) $ 1.11
  • mantle-staked-etherMantle Staked Ether (METH) $ 4,495.82
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.998546
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 230.05
  • global-dollarGlobal Dollar (USDG) $ 0.999997
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 1.45
  • pancakeswap-tokenPancakeSwap (CAKE) $ 2.75
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 115,345.00
  • ripple-usdRipple USD (RLUSD) $ 1.00
  • clbtcclBTC (CLBTC) $ 114,709.00
  • optimismOptimism (OP) $ 0.460386
  • celestiaCelestia (TIA) $ 1.05
  • injective-protocolInjective (INJ) $ 8.75
  • fasttokenFasttoken (FTN) $ 1.97
  • lido-daoLido DAO (LDO) $ 0.953471
  • aerodrome-financeAerodrome Finance (AERO) $ 0.930465
  • msolMarinade Staked SOL (MSOL) $ 267.57
  • blockstackStacks (STX) $ 0.460940
  • doublezeroDoubleZero (2Z) $ 0.235915
  • hashnote-usycCircle USYC (USYC) $ 1.10
  • curve-dao-tokenCurve DAO (CRV) $ 0.573276
  • ousgOUSG (OUSG) $ 113.06
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 10.87
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 4,425.74
  • flokiFLOKI (FLOKI) $ 0.000074
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 4,168.53
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.270272
  • the-graphThe Graph (GRT) $ 0.065556
  • plasmaPlasma (XPL) $ 0.363899
  • tbtctBTC (TBTC) $ 114,966.00
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.10
  • usdx-money-usdxStables Labs USDX (USDX) $ 0.998302
  • pyth-networkPyth Network (PYTH) $ 0.117512
  • dashDash (DASH) $ 52.15
  • kaiaKaia (KAIA) $ 0.110731
  • sonic-3Sonic (S) $ 0.171395
  • tezosTezos (XTZ) $ 0.610140
  • stader-ethxStader ETHx (ETHX) $ 4,473.95
  • gtethGTETH (GTETH) $ 4,170.12
  • humanityHumanity (H) $ 0.342468
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 4,170.39
  • iotaIOTA (IOTA) $ 0.148045
  • conflux-tokenConflux (CFX) $ 0.115871
  • beldexBeldex (BDX) $ 0.078815
  • usdaiUSDai (USDAI) $ 1.01
  • newton-projectAB (AB) $ 0.006874
  • pendlePendle (PENDLE) $ 3.40
  • coinbase-wrapped-staked-ethCoinbase Wrapped Staked ETH (CBETH) $ 4,590.21
  • ether-fiEther.fi (ETHFI) $ 0.994510
  • swethSwell Ethereum (SWETH) $ 4,599.50
  • dogwifcoindogwifhat (WIF) $ 0.556628
  • theta-tokenTheta Network (THETA) $ 0.553324
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999897
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999815
  • usual-usdUsual USD (USD0) $ 0.998220
  • bitcoin-avalanche-bridged-btc-bAvalanche Bridged BTC (Avalanche) (BTC.B) $ 115,454.00
  • ethereum-name-serviceEthereum Name Service (ENS) $ 16.17
  • starknetStarknet (STRK) $ 0.123588
  • the-sandboxThe Sandbox (SAND) $ 0.216727
  • trust-wallet-tokenTrust Wallet (TWT) $ 1.27
  • galaGALA (GALA) $ 0.011309
  • myx-financeMYX Finance (MYX) $ 2.73
  • binance-peg-dogecoinBinance-Peg Dogecoin (DOGE) $ 0.203340
  • mantle-bridged-usdt-mantleMantle Bridged USDT (Mantle) (USDT) $ 1.00
  • jasmycoinJasmyCoin (JASMY) $ 0.010489
  • bittorrentBitTorrent (BTT) $ 0.00000051
  • raydiumRaydium (RAY) $ 1.87
  • astherus-staked-bnbAster Staked BNB (ASBNB) $ 1,223.67
  • true-usdTrueUSD (TUSD) $ 0.999006
  • ether-fi-staked-ethether.fi Staked ETH (EETH) $ 4,165.05
  • wrapped-hypeWrapped HYPE (WHYPE) $ 47.30
  • arbitrum-bridged-wrapped-eethArbitrum Bridged Wrapped eETH (Arbitrum) (WEETH) $ 4,498.98
  • benqi-liquid-staked-avaxBENQI Liquid Staked AVAX (SAVAX) $ 25.30
  • swissborgSwissBorg (BORG) $ 0.486009
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.11
  • vaultaVaulta (A) $ 0.296115
  • bitcoin-svBitcoin SV (BSV) $ 23.44
  • decentralandDecentraland (MANA) $ 0.243484
  • mantle-restaked-ethMantle Restaked ETH (CMETH) $ 4,497.37
  • usddUSDD (USDD) $ 1.00
  • polygon-pos-bridged-weth-polygon-posPolygon PoS Bridged WETH (Polygon POS) (WETH) $ 4,170.52
  • flowFlow (FLOW) $ 0.277660
  • ape-and-pepeApe and Pepe (APEPE) $ 0.000002
  • jito-governance-tokenJito (JTO) $ 1.13
  • eigenlayerEigenCloud (prev. EigenLayer) (EIGEN) $ 1.13
  • sun-tokenSun Token (SUN) $ 0.022912
  • kinetiq-earn-vaultKinetiq Earn Vault (VKHYPE) $ 47.83
  • syrupMaple Finance (SYRUP) $ 0.388128
  • aethirAethir (ATH) $ 0.030130
  • frax-etherFrax Ether (FRXETH) $ 4,137.64
Bitcoin

Mt. Gox’s security flaws costed millions. Could AI have spotted them?

By admin
0 2

Mt. Gox’s security flaws costed millions. Could AI have spotted them?

Former Mt. Gox CEO Mark Karpelès probably wishes he had access to today’s artificial intelligence when he bought Mt. Gox from its founder, Jed McCaleb, in 2011.

That’s because Karpelès has just fed an early version of Mt. Gox’s codebase into Anthropic’s Claude AI. What he got back was an analysis that broke down the key vulnerabilities that led to the defunct exchange’s first major hack, while labelling it “critically insecure.”

In a Sunday X post, Karpelès said he uploaded Mt. Gox’s 2011 codebase to Claude, alongside various data, including GitHub history, access logs and data “dumps released by” the hacker.

Mt. Gox’s security flaws costed millions. Could AI have spotted them?

Source: Mark Karpelès

The analysis from Claude AI said Mt. Gox’s 2011 codebase represented a “feature-rich but critically insecure Bitcoin exchange.”

“The developer (Jed McCaleb) demonstrated strong software engineering capabilities in terms of architecture and feature implementation, creating a sophisticated trading platform in just 3 months,” the analysis reads, adding, however, that:

“The codebase contained multiple critical security vulnerabilities that were targeted in the June 2011 hack. Security improvements made between ownership transfer and the attack partially mitigated the impact.”

Karpelès took over the reins of the Japan-based Mt. Gox in March 2011 after buying the exchange from founder and developer Jed McCaleb. The exchange then suffered a hack around three months later that saw 2,000 Bitcoin (BTC) drained from the platform.

“I didn’t get to look at the code before taking over; it was dumped on me as soon as the contract was signed (I know better now, due diligence goes a long way),” added in a comment on his X post.

Claude AI’s post-mortem of Mt. Gox

According to Claude AI, the key vulnerabilities consisted of a mixture of code flaws, a lack of internal documentation, weak admin and user passwords and retained account access of prior admins after new ownership handover.

The hack was sparked by a major data breach after Karpelès’ WordPress blog account and some of his social media accounts were compromised.

“Contributing factors included: the insecure original platform, undocumented WordPress installation, retained admin access for ‘audits’ after ownership transfer, and a weak password for a critical admin account,” the analysis reads.

The analysis also outlined that some changes pre- and post-hack “mitigated some attack vectors,” preventing the attack from being a lot worse than it could have been.

Such changes included an update to a salted hashing algorithm to provide greater password protection, fixing an SQL injection hacking code in the main application, and implementing “proper locking around withdrawals.”

“The salted hashing prevented mass compromise and forced individual brute forcing, but no hashing algorithm can protect weak passwords. The withdrawal locking prevented the more severe outcome of tens of thousands of BTC being drained via the $0.01 withdrawal limit exploit,” the analysis reads, adding:

“This codebase was targeted in a sophisticated attack in June 2011. Security improvements had been made in the 3 months since ownership transfer, which affected the attack outcome. This incident demonstrates both the severity of the original codebase’s vulnerabilities and the partial effectiveness of remediation efforts.”

While the analysis suggests AI could have helped shore up specific coding flaws, the core of the breach was the result of poor internal processes, weak passwords, and a critical lack of network segmentation that let a blog breach threaten the entire exchange.

Unfortunately, AI cannot prevent human error.

Mt. Gox still impacts the market a decade later

Despite being defunct for over a decade, Mt. Gox has continued to have an impact on the market over the past couple of years, as large sums of Bitcoin (BTC) have been repaid to creditors, resulting in significant potential selling pressure on the market, though this hasn’t happened as many have feared.

Ahead of the Oct. 31 repayment deadline later this month, the exchange holds around 34,689 BTC.

Source

admin 14452 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.