Share this article
Token Exchange DX.Exchange Says It Has Patched Security Vulnerability
DX.Exchange claims it has patched a security vulnerability allowing anyone access to user authentication tokens.
By Nikhilesh De
Updated Sep 13, 2021, 8:47 a.m. Published Jan 10, 2019, 5:50 p.m.
Make us preferred on Google
Security token trading platform DX.Exchange says it has patched a security vulnerability that allowed anyone to access user authentication tokens.
DX.Exchange, which went live on Monday, offers crypto tokens representing shares in a number of Nasdaq-traded firms. The company uses Nasdaq's matching engine and financial information exchange protocol to facilitate the trading of these digital securities.
STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
However, in its first few days, the platform revealed sensitive data, including password reset links, as reported by Ars Technica. It is unclear how many user accounts were at compromised, though an anonymous trader told the news site that he collected "about 100 ... tokens over 30 minutes."
Ars further reported that it was able to collect "a large number" of authentication tokens.
In a statement, the DX.Exchange attributed the bug to "an authentication token error," but said the issue was resolved before any damage could occur.
Daniel Skowronski, the exchange's CEO, said in a statement that user funds were not at risk, explaining:
"We are happy to report that the vulnerability has been successfully patched, and no user funds were compromised ... Customer funds were always safe, our multi layer advanced monitoring and defense mechanism was able to avoid any further issue."
The statement went on to note that any developers who discover bugs in the future can report them to the exchange directly through a bug bounty program.
Trading graph image via Shutterstock
More For You
Pudgy Penguins is building a multi-vertical consumer IP platform — combining phygital products, games, NFTs and PENGU to monetize culture at scale.
What to know:
Pudgy Penguins is emerging as one of the strongest NFT-native brands of this cycle, shifting from speculative “digital luxury goods” into a multi-vertical consumer IP platform. Its strategy is to acquire users through mainstream channels first; toys, retail partnerships and viral media, then onboard them into Web3 through games, NFTs and the PENGU token.
The ecosystem now spans phygital products (> $13M retail sales and >1M units sold), games and experiences (Pudgy Party surpassed 500k downloads in two weeks), and a widely distributed token (airdropped to 6M+ wallets). While the market is currently pricing Pudgy at a premium relative to traditional IP peers, sustained success depends on execution across retail expansion, gaming adoption and deeper token utility.
More For You
Gold in 'extreme greed' sentiment as it adds entire bitcoin market cap in one day
Bullion ripped past $5,500 and sentiment gauges hit “extreme greed,” while bitcoin stayed pinned below $90K — a split that’s getting harder to ignore.
What to know:
- Gold’s surge above $5,500 an ounce has taken on the feel of a crowded trade, with its notional value jumping about $1.6 trillion in a single day.
- Sentiment gauges such as JM Bullion’s Gold Fear & Greed Index are signaling extreme bullishness in precious metals, even as similar crypto indicators remain stuck in fear.
- Bitcoin is lagging despite the “hard assets” narrative, trading like a high-beta risk asset while investors seeking a store of value are favoring physical gold and silver over digital tokens.
Top Stories
