Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

Breach
2023
Former Security Engineer Sentenced to Three Years for Hacking Two Decentralized Exchanges

Former Security Engineer Sentenced to Three Years for Hacking Two Decentralized Exchanges

Table of Contents

Incident Details

A former security engineer named Shakeeb Ahmed has been handed a three-year prison sentence by U.S. District Judge Victor Marrero for allegedly hacking two decentralized cryptocurrency exchanges. Ahmed was also directed to surrender around $12.3 million and a significant amount of cryptocurrency. The U.S. Attorney's Office specified that Ahmed is obligated to provide over $5 million in compensation to Nirvana and the decentralized exchanges (dex) involved. Additionally, the judge ruled for Ahmed, aged 34, to serve three years under supervised release. In December 2023, Ahmed confessed to taking advantage of a weakness in the smart contracts of one of the dex platforms. Following his fraudulent activities on the platforms, Ahmed tried to conceal his actions by exchanging the stolen digital assets for a privacy coin. Despite his efforts, U.S. law enforcement managed to capture Ahmed in July 2023.

Incident

How Did the Breach Happen?

Ahmed took advantage of a weakness in a smart contract within the dex platform, enabling him to engage in fraudulent activities on the platform.

What Data has been Compromised?

Digital assets and cryptocurrencies were stolen from decentralized exchanges in a security breach.

Why Did the company's Security Measures Fail?

Ahmed discovered a vulnerability in the company's smart contract that exposed a failure in their security protocols, highlighting a deficiency in the auditing and testing processes for security.

What Immediate Impact Did the Breach Have on the company?

Ahmed caused financial harm by stealing around $12.3 million and a substantial amount of cryptocurrency from various exchanges, resulting in immediate consequences.

How could this have been prevented?

One way to avoid this breach would have been to thoroughly examine and test their smart contracts for security, fix any weaknesses found quickly, and enforce more stringent access controls and surveillance.

What have we learned from this data breach?

The incident underscores the significance of conducting frequent audits and assessments of systems to identify vulnerabilities. It also emphasizes the importance of implementing strict access controls and vigilant monitoring to identify and thwart unauthorized actions.

Summary of Coverage

Shakeeb Ahmed, a former security engineer, received a three-year prison sentence in 2023 for unauthorized access to two decentralized cryptocurrency exchanges through exploiting a flaw in a smart contract of a dex platform. This resulted in financial damages for the exchanges, highlighting the importance of implementing strong security protocols, conducting frequent audits, and testing systems regularly to avoid security breaches.

Is your System Free of Underlying Vulnerabilities?
Find Out Now