Latest news about Bitcoin and all cryptocurrencies. Your daily crypto news habit.
Cryptocurrency exchange Bitfinex has revealed it has successfully repelled an attempt to exploit $15 billion worth of XRP tokens on the platform that were associated with an attempt using an unsuccessful partial payments exploit.Â
The failed transfers spooked market watchers, especially since they amounted to half of the XRP tokenâs market capitalization.Â
Bitfinex Thwarts Exploit AttemptÂ
The failed attempt was confirmed by Bitfinex Chief Technology Officer and CEO Paolo Ardoinom, who posted about the attempt on social media platform X. According to Ardoino, the would-be attacker used a feature of the XRP Ledger network to attempt to exploit the Bitfinex crypto exchange unsuccessfully. The blockchain tracking account Whale Alerts brought the incident to light, which reported a significant transfer of 25.6 billion XRP from an unidentified wallet to the Bitfinex exchange.Â
However, the actual transfer was only for a few cents worth of XRP and failed because the sender did not have enough liquidity, according to blockchain data. The attackerâs motive was to trick Bitfinex into thinking the transfer was genuine, potentially opening the exchange up for a hack. However, Bitfinexâs security systems flagged the transfer as a partial payment, a feature of the XRP ledger that allows a payment to succeed by reducing the amount received.Â
âSomeone attempted to attack @bitfinex via âPartial Payments Exploit.â Attack failed since Bitfinex properly handles the âdelivered_amountâ data field.â
What Is A Partial Payments Exploit?Â
A partial payments exploit functions on the assumption that a company has an improperly configured system that reads only the amount field of an XRP transaction. This field is typically set to a high amount. However, in reality, the attacker sends across a much smaller amount specified in a different transaction field, aiming to receive the credit for the difference. However, Adroino revealed that the attack failed because Bitfinex properly handles the âdelivered_amountâ data field.Â
Blockchain data revealed the attacker tried a similar attack on Binance with a 58.9 billion XRP transfer. However, this transfer also failed.Â
Partial payments are helpful in returning payments without incurring additional costs. According to XRP Ledger transactional documents, these are known attack vectors.Â
âIf a financial institutionâs integration with the XRP Ledger assumes that the Amount field of a Payment is always the full amount delivered, malicious actors may be able to exploit that assumption to steal money from the institution. The malicious actor withdraws as much of the balance as possible to another system before the vulnerable institution notices the discrepancy.â
Bitfinexâs Regulatory ChallengesÂ
Last week, Bitfinex UK implemented several changes to its platform, requiring customers to adopt the new rules. The new rules primarily impact customers who registered their accounts on or after the 1st of November, 2023. Under the new regulations, these users are no longer eligible to apply for individual account verification, with the exchange stating the policy is now permanent.Â
However, the shift is not restricted to individual investors; crypto investors are also impacted.Â
Bitfinex now restricts account verification to âHigh Net Worthâ individuals, meaning traders must meet specific financial criteria. Additionally, Bitfinex may request additional documentation and information to verify compliance with UK laws.
Disclaimer: This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.
Disclaimer
The views and opinions expressed in this article are solely those of the authors and do not reflect the views of Bitcoin Insider. Every investment and trading move involves risk - this is especially true for cryptocurrencies given their volatility. We strongly advise our readers to conduct their own research when making a decision.