As companies continue to fall for hacks and exploits, professionals working in the cybersecurity space chipped in on what can be improved in terms of crypto security for digital asset companies and the broader crypto industry.
Before September, almost $1 billion had already been lost to crypto hacks, exploits and scams in 2023. Yet, more incidents continue to shake the crypto world in the fourth quarter of 2023, such as the Poloniex exploit, with over $100 million in digital asset losses, and the HECO Chain bridge hack, with over $80 million in losses.
.@Poloniex is suspected to have been hacked.
The Poloniex address ‘0xA910’ transferred all tokens to a new address ‘0x0A59’ in 40 minutes, with a total value of about $60 million.
— Scopescan (@0xScopescan) November 10, 2023
With the number of security incidents happening within the space and the value lost to each hack or exploit, it’s undeniable that there are gaps to be filled in terms of digital asset security within the crypto space. Because of this, Cointelegraph reached out to cybersecurity professionals to see what they think can be done to prevent further incidents and tighten up the security in crypto.
Continued incidents are “inexcusable”
Ronghui Gu, the co-founder of blockchain security firm CertiK, told Cointelegraph in a statement that it’s “inexcusable” to have continued incidents caused by SIM-swap and multisig failures after incidents gave visibility to this security issue. According to Gu, companies should embrace crypto-native multifactor authentication and conduct regular security audits. He said:
“We’re building highly functional, highly complicated technology, and it’s important to make security the primary consideration, even when there are often large incentives to build fast and break things.”
Christian Seifert, the researcher in residence at Forta Network, also agreed that security needs to be a priority. Seifert, who previously worked as a security lead at Microsoft, said that users need to demand security, and if this doesn’t happen, regulators need to step in. The security professional said that in this way, crypto projects would adopt more comprehensive security strategies.
Furthermore, Seifert also argued that while security audits are effective, these are “not enough.” “One needs a comprehensive security strategy that starts…