Binance, a leading cryptocurrency exchange, has countered a recent report alleging that a “highly sensitive” collection of internal passwords and code was inadvertently made public on GitHub for an extended period. Binance maintains that the exposed code was outdated and presented only a “negligible risk.”
A report from 404 Media, dated January 31, claimed that a significant amount of sensitive data, including “code, infrastructure diagrams, internal passwords, and technical information” related to Binance’s password management and multifactor authentication processes, was accessible online.
Binance took immediate action by filing a copyright takedown request with GitHub on January 24, asserting that the information posed a “significant risk” and was published without permission. However, a spokesperson from Binance clarified to Cointelegraph that the leaked information was “very outdated” and did not reflect their current production systems. The spokesperson emphasized that the exposed data posed a minimal risk to the security of Binance’s users, their assets, or the platform itself. Binance asserted that the information was so obsolete that it would be ineffective for any third parties or malicious actors.
In its defense, Binance stated that its decision to issue a takedown request and pursue legal action against the individual responsible for the GitHub post was driven by a commitment to protect its intellectual property, past or present. The exchange aimed to prevent “unnecessary confusion or unwarranted fears” regarding the publication of private data.
Despite Binance’s reassurances, the request submitted to GitHub repeatedly mentioned that the leaked internal code posed a significant risk to the company, potentially causing financial harm and user confusion. As of now, Binance has not provided additional comments on these seemingly contradictory claims.
Get $200 Free Bitcoins every hour! No Deposit No Credit Card required. Sign Up