Powered by

Inside money, markets, and big tech

It’s 2020 and hacking wallets is still a PR stunt for cryptocurrency startups

Remember Bitfi? No? Anybody?

g4s, bitocin, cryptocurrency, vault, bobkchain, storage, wallet, secure, gk8

You’d have thought by now that cryptocurrency startups would know to focus on their tech rather than PR stunts. But sadly not.

An Israel-based startup is offering a $250,000 bounty for anyone that can crack its supposedly ‘unhackable’ Bitcoin cold wallet and extract the funds. It’s like Bitfi all over again.

[Read: Watch this 15-year-old hacker play DOOM on John McAfee’s ‘unhackable’ crypto-wallet]

The cybersecurity startup GK8 has put around $125,000 (14 Bitcoin) into the wallet itself, and will pay out an additional reward of up to $125,00 (14 Bitcoin) to the successful hacker, The Block reports.

According to the terms and conditions, to be eligible for a share of the additional bounty, hackers must submit in “written detail” how they hacked the wallet. It must state what software, hardware, and processes were used in the attack. All of this must be done within 48 hours of successfully hacking the wallet, too.

It’s not clear what one must do exactly to claim the whole prize pot, though. In the bounty‘s Ts and Cs, GK8 says that additional prizes will be “awarded at its own discretion.”

GK8, bounty, unhackable, wallet, cryptocurrency
Credit: GK8
GK8’s terms and conditions for the bounty campaign.

What’s more, hackers have just 24 hours to successfully complete their penetration of GK8’s wallet. GK8 also reserves the right to terminate the bounty program at any time. So how this plays out is anyone’s guess. The wallet might well be hackable, but in just 24 hours? That’s a different question.

The 24-hour window will open later this week on February 3, at 9am EST (3pm CET).

If the company was genuinely interested in discovering flaws in its system, it wouldn’t have such tight stipulations. One would assume that it would want to incentivize and work with as many white-hat hackers as possible to strengthen its product.

GK8 certainly appears to be throwing down the gauntlet to would-be cybersecurity bounty hunters, though. It claims its wallet is “totally unhackable.” A statement that surely won’t come back to bite it in its ass, right?

Maybe we should remember when famed crypto-shill John McAfee put down 100,000 US smackeroos for anyone that could hack into the supposedly ‘unhackable Bitfi’ cryptocurrency wallet.

McAfee didn’t lay down a deadline like GK8 has, though. After a week, the Bitfi wallet allegedly got hacked, and then it got hacked again.

A 15-year-old hacker even managed to root the device to load up and play a ROM of the original DOOM.

At the time, McAfee claimed the Bitfi wallet was the “world’s first unhackable device.” Clearly this wasn’t entirely true. It seems even the ‘unhackable’ can always be hacked with enough time.

Will 24 hours be enough for budding hackers to break into GK8’s systems? Will anyone secure the bounty?

We’ll have to wait until next week to see how this one plays out.

Published January 28, 2020 — 10:58 UTC

Corona coverage

Read our daily coverage on how the tech industry is responding to the coronavirus and subscribe to our weekly newsletter Coronavirus in Context.

For tips and tricks on working remotely, check out our Growth Quarters articles here or follow us on Twitter.