Feeds

Blimey! ANOTHER Bitcoin bleed brouhaha

Poloniex loses TEN PER CENT of depositors' funny money

Secure remote control for conventional and virtual desktops

A cryptocurrency exchange called Poloniex has lost more than ten per cent of its entire stash of Bitcoin after allegedly being hacked.

Tristan D'Agosta, who runs Poloniex under the pseudonym Busoni, admitted to the loss and issued a comprehensive rundown of what went wrong.

This approach contrasts starkly with the wall of silence put up by Mt. Gox after last week's mysterious collapse.

The Poloniex boss said the hacker found a vulnerability in the code that handles withdrawals. This flaw allowed the crypto cat-burglar to jam the system with multiple simultaneous withdrawal requests, tricking the exchange into paying out more money than it should.

With remarkable frankness, Busoni 'fessed up to this "design flaw" and admitted it could have been avoided if withdrawals were processed one after the other, rather than at the same time.

He has promised to repay people who have lost money in the theft, which resulted in the loss of 12.3 per cent of the exchange's money reserves. Although there has been no clear explanation of how much the nicked funny money is worth in real world readies, observers have suggested the amount adds up to something in the region of $50,000.

Busoni said he would "take full responsibility" and wrote: "I would like to thank everyone for their support and understanding. It really means a lot. Having other people's money taken under my watch has made me feel just about as awful as I've ever felt in my life."

However, he doesn't have enough Bitcoin to pay back the unlucky victims just yet and has launched a poll on what to do to start compensate people whose digital stash was swiped.

Poloniex has halted all Bitcoin transactions for the time being whilst it works on a cast-iron fix.

Cryptocurrency evangelists have had their faith in digital dosh sorely tested in recent weeks, following the Mt. Gox collapse and a large scale theft from Flexcoin, which described itself as "The Bitcoin Bank" - until thieves making off with 896BTC forced its owners to shutter the site. ®

Beginner's guide to SSL certificates

More from The Register

next story
Criticism of Uber's journo-Data Analytics plan is an Attack on DIGITAL FREEDOM
First they came for Emil – and I'm damn well SPEAKING OUT
'It is comforting to know where your data centres are.' UK.GOV does NOT
Plus: Anons are 'wannabes', KKK says, before being pwned
Google's whois results say it's a lousy smut searcher
Run whois google.com or whois microsoft.com. We dare you, you PIG◙◙◙◙ER
Holy vintage vehicles! Earliest known official Batmobile goes on sale
Riddle me this: are you prepared to pay US$180k?
'Open source just means big companies can steal your code.' O RLY?
Plus: Flame of the Week returns, for one night only!
NEWSFLASH: It's time to ditch dullard Facebook chums
Everything hot in tech, courtesy of avian anchor Regina Eggbert
Hey, you, PHONE-FACE! Kickstarter in-car mobe mount will EMBED your phone into your MUG
Stick it on the steering wheel and wait for the airbag to fire
prev story

Whitepapers

Free virtual appliance for wire data analytics
The ExtraHop Discovery Edition is a free virtual appliance will help you to discover the performance of your applications across the network, web, VDI, database, and storage tiers.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
The total economic impact of Druva inSync
Examining the ROI enterprises may realize by implementing inSync, as they look to improve backup and recovery of endpoint data in a cost-effective manner.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Website security in corporate America
Find out how you rank among other IT managers testing your website's vulnerabilities.