Security Breach Overview:
A user named "Miembro" on Breach Forums advertised the sale of access to Binance's law enforcement request panel for $10,000 in Bitcoin or Monero. This access reportedly allows unlimited law enforcement requests with responses within three to seven days.
Binance's Security Infrastructure:
Binance employs Kodex, a third-party service, to validate law enforcement requests. Hudson Rock researchers conducted an investigation revealing Binance's use of this service.
Nature of the Compromise:
The hacker reportedly gained access through credentials compromised by malware-infected computers. These credentials belonged to law enforcement officers from the Taiwanese Criminal Investigation Bureau, the Uganda Police Force, and the Anti-Cybercrime Group of the Philippine National Police.
Verification and Ongoing Issues:
It remains unclear if access was indeed achieved through the compromised credentials. However, the hacker claimed in a follow-up post that the access "works fine" and is functional with various identifiers like email, phone numbers, and wallet transactions. This incident coincides with other legal challenges faced by Binance, including a potential ban in the Philippines and a recent court order in the United States mandating significant financial penalties against Binance and its former CEO, Changpeng "CZ" Zhao.
Disclaimer: Please note that the information provided in this article is based on the referenced research articles. It is essential to conduct further research and analysis before making any investment decisions. The cryptocurrency market is highly volatile, and investors should exercise caution and consult with financial professionals before engaging in cryptocurrency trading or investment activities.