Significant Security Problems Show Up On Turkish Crypto Exchange Sistemkoin

Popular Turkish crypto exchange Sistemkoin proves to be working great after reporting a $68 million in volume over the past 24-hours, however, according to a user report reaching into our blockchain news, the exchange faces serious security problems.

The report says that there are two aspects to security issues. The first notes that anyone with a program called Burpsuite and a Sistemkoin account is able to compromise the support tickets of other users and allegedly the exchange was notified of the problem but never responded.

The other aspect shows that the most tickets were related to withdrawal problems. This could be a consequence for not following basic security practices.

Withdrawals are the most important element of a crypto exchange because it proves that the customers can rely on the exchange. On the annual event named ‘’Proof of Keys’’, the validity of exchanges is tested. Major exchanges such as Binance have it easy on these days since their business model and software is properly written.

The problem is that the tickets seem to be ignored and as one analyst said:

‘’While browsing Sistemkoin.com, I found a few critical vulnerabilities where I was able to view and comment on support tickets of any user of the exchange. As they didn’t respond I went through few support tickets and found that most of support tickets are about users complaining as they weren’t able to withdraw tokens.’’

This means that a user on the platform simply replaces the ticket number with the number of another support ticket which makes easy for hackers to understand the full process and get a hold of the data. The analyst said:

‘’While viewing the support ticket, the attacker intercepts the request to the server and changes the support ticket ID parameter to victims support ticket using any tool like burp suite.’’