Binance, the cryptocurrency exchange, has denied a report alleging the exposure of a “highly sensitive” cache containing internal passwords and code on GitHub for an extended period. Binance argues that the code was outdated, presenting a “negligible risk.”
As of Jan 31, a report by 404 Media claimed the existence of a cache containing “code, infrastructure diagrams, internal passwords, and other technical information,” including details on the exchange’s password procedures and multifactor authentication.
It is mentioned in the report that Binance successfully requested GitHub to remove the files through a copyright takedown request on Jan 24. In the request, Binance emphasized that the disclosed information “poses [a] significant risk” and was shared “without authorization.”
However, A Binance representative stated that the user posted very old information on GitHub. They emphasized that Binance’s security team found that the stored data doesn’t look like our current, active setup.
Binance Takes Swift Action Against Potential Data Threat
Moreover, the data presented “constituted a minimal threat to the safety of our users, their holdings, or our system,” according to Binance. They asserted that the information needed to be updated, rendering it impractical for external parties or malicious entities to utilize.
Furthermore, Binance affirms it’s dedicated to protecting its intellectual treasures, old or new. It’s tackling worries about possible mix-ups or unnecessary panic from private data exposure. However, To do this, Binance started a takedown demand on GitHub and is chasing legal actions against the user involved.
Binance’s submitted a takedown request to GitHub, emphasizing the proprietary nature of the information as “our client’s internal code.” Additionally, the request underscores the significant risk this poses to Binance’s security. The document also underscores the potential for severe financial harm to Binance’s and users’ well-being due to confusion or harm.
Binance’s has not provided additional responses to inquiries regarding this matter.
Related Reading | Crypto Protection Alert: Singapore Authorities Back Hardware Wallets To Thwart Cyber Threats
The author’s views are for reference only and shall not constitute any investment advice. Please ensure you fully understand and assess the products and associated risks before purchasing.
Comments (No)