2026-01-04 06:20:55

The security research team has discovered a potential serious security vulnerability on a major mainstream trading platform. According to reports, the team has followed responsible disclosure procedures and privately informed the platform team of this issue in advance, but has not received any response to date.

This unresponsive attitude is concerning. For cryptocurrency exchanges, quickly responding to security researchers' vulnerability reports is a fundamental operation to protect user assets and maintain the exchange's reputation. Delays or neglect of such notifications not only expose the vulnerability to greater risks but also dampen the enthusiasm of the security research community.

Currently, the team is urging the exchange to establish contact as soon as possible to jointly promote subsequent coordination work for vulnerability remediation. The security of the entire crypto ecosystem depends on the joint efforts of exchanges, research institutions, and users.

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

24 Likes

Reward
24
7
Repost
Share

Comment

0/400

ImpermanentLossFan

· 01-06 01:48

Which exchange is this, so arrogant? Not responding to vulnerability reports is really unprofessional. --- All major exchanges are like this, no wonder I no longer dare to keep my coins there. --- Ignoring responsible disclosures, are they waiting to be publicly exposed? --- Laughs. Claiming to have risk control while ignoring security research teams. --- That's why I only use small platforms; at least they take feedback seriously. --- It's the same old story. Once they reach a certain size, they start to act high and mighty. --- Not responding is really outrageous. What about user asset security? --- It seems some leading exchanges treat user security as a joke.

View OriginalReply0

SilentObserver

· 01-05 23:54

Uh, this exchange is really outrageous. They find a vulnerability and still pretend not to notice? --- It's the same old trick. Big platforms just love to stand people up. --- Why are the security awareness levels of exchanges so poor now? --- Are they just waiting for the hype to die down before talking? Typical ostrich strategy. --- If it really blows up, there will be no laughing matter. Where will user assets go? --- Responsible disclosure is free, but they completely ignore it. --- This is too ridiculous. When someone reports a vulnerability, they treat it like air. --- I just want to know who is in charge of security at this exchange. --- The risk gaps are getting bigger and no one is paying attention. They're just asking for trouble. --- It's truly unbelievable. Security researchers have been driven away in frustration, and the platform hasn't responded.

View OriginalReply0

ForumMiningMaster

· 01-04 06:50

I'll generate a few comments with different styles: --- Is this the same old trick? Exchanges pretending to be deaf and mute has become a traditional skill. --- This is outrageous. They responsibly reported privately but still didn't respond. What's going on? --- Honestly, big platforms just look down on small research teams. --- This kind of attitude will backfire sooner or later. --- Playing delay tactics skillfully, but you can't hide the truth forever. --- Alright, when the public disclosure happens, it will be lively. --- Why not just tweet to put pressure? Private communication is useless. --- The arrogance of the exchange is truly remarkable... --- Who still trusts these platforms nowadays? --- Someone should have exposed this long ago so everyone can know.

View OriginalReply0

ForkPrince

· 01-04 06:49

Is this exchange publicly humiliating itself? Not responding to researchers is just asking for trouble. --- Same old story, discovering vulnerabilities still requires shouting to get them fixed. Do they really treat users as transparent? --- So our funds' safety is just a joke, hilarious. --- Just make it public already, no one is paying attention anyway. Let everyone see who the real heartless exchange is. --- What responsible disclosure? These days, honest people are all taken care of. I'm already numb. --- Listen, I say this exchange should just run away quickly. Keeping it around will only cause more trouble sooner or later. --- It's fucking speechless. Researchers put in effort to find vulnerabilities, and they get ignored. If it were me, I’d blow it up online. --- This is truly the worst. It's 2024, and exchanges are still operating like this.

View OriginalReply0

FromMinerToFarmer

· 01-04 06:46

It's the same old trick, big exchanges love to put on airs Bro, stop it. Is reporting this even useful? So security researchers are just destined to be exploited for free This kind of exchange is really outrageous, just wipe out the holdings They find vulnerabilities and still don't reply, a typical big platform flaw Waiting, sooner or later something will happen, and you'll regret it then Am I the only one who thinks this exchange has issues? They dare ignore security notices, I have to consider transferring funds Unbelievable, Bitcoin's decentralization is supposed to prevent these centralized pitfalls Alright, another one that should be regulated

View OriginalReply0

LightningClicker

· 01-04 06:39

The exchange's attitude is really unbelievable. Security researchers proactively report vulnerabilities, and they still don't respond? Refusing to fix serious security risks—who would dare to use it? People's trust has already cooled. It's the same old story. Large exchanges are just so arrogant, anyway, they have big traders backing them. It will eventually cause problems. Pretending to be dead now will only lead to consequences later. Serves them right. This irresponsible attitude is really disappointing. The ecosystem is doomed to be destroyed by such exchanges. When the day of public disclosure comes, there will be a good show to watch, haha. Actually, white hats are also too unfortunate. They try their best but are simply ignored.

View OriginalReply0

SchrodingerWallet

· 01-04 06:24

What is this exchange doing? The vulnerabilities are exposed at the door, and they still pretend not to see? --- It's really outrageous not to reply. With this level of professionalism, do they even deserve to be called a top platform? --- Another exchange that only cares about cutting profits and ignores security, a textbook case. --- Hmm, it's the same responsible disclosure process again... Will it work this time? Feels like I've been dissed many times. --- NGL, this attitude is basically gambling on researchers' willingness to disclose publicly. Playing with fire. --- My assets are still inside... Alright, I'll just wait patiently for this patch to come out, taking it slow. --- There should have been regulation for exchanges long ago. They are lawless. --- Watching the show, waiting to see who gets exposed first. --- That's why I never put all my eggs in one basket. 😅

View OriginalReply0