fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Crypto Exchange Glitch Causes Duplicate Purchases, Delayed Credits

Crypto Exchange Glitch Causes Duplicate Purchases, Delayed Credits

This week, recurring glitches on the popular cryptocurrency exchange Crypto.com caused multi-day delays for users in receiving their purchased assets.

Moreover, those reattempting “declined” or “expired” transactions were charged multiple times for duplicate purchases.

Crypto.com describes itself as the world’s fastest-growing crypto app with over 10 million users across 90+ countries.

However, not everyone seems happy with the app’s recently reported slowdowns which have caused noticeable issues for the users.

Slowdowns, duplicate transactions, and delayed credits

This week, multiple users reported experiencing problems when using the app for cryptocurrency trading platform, Crypto.com.

The Crypto.com mobile app first began experiencing a degraded performance at the beginning of this week, according to the app’s service status page.

But, the network slowdown kept recurring throughout the week, including today and has led to issues such as massive delays in purchases being reflected in the users’ accounts.

Purchases made over the weekend or anytime this week took days to be reflected in users’ accounts.

More importantly, however, users noticed that some cryptocurrency purchase transactions that had been initially “declined” in the app—prompting them to retry the purchases multiple times, were posted to their account days later.

This caused duplicate purchases and the platform charging users twice, or four times than what the users had desired spending, and for transactions that were supposedly “declined.”

Also Read: PDPA Singapore Guidelines: 16 Key Concepts For Your Business

Users reattempt “declined” or “expired” transactions and get charged multiple times (Twitter)

“I had an order not go through yesterday afternoon because it ‘timed out’. No charge on my credit card. Then woke up this morning with the charge on my card and crypto I wouldn’t have purchased this morning at 8 am?” asked recording artist Scotty Sire.

In the same thread a user responded:

https://twitter.com/gibran_esparza/status/1392294996997517319?ref_src=twsrc%5Etfw%7Ctwcamp%5Etweetembed%7Ctwterm%5E1392294996997517319%7Ctwgr%5E%7Ctwcon%5Es1_&ref_url=https%3A%2F%2Fwww.bleepingcomputer.com%2Fnews%2Fsecurity%2Fcrypto-exchange-glitch-causes-duplicate-purchases-delayed-credits%2F

Many other users jumped in on Twitter to express similar concerns and their frustration with the unintended duplicate purchases made from their bank account [123].

Company addresses delays but ignores duplicate transactions

In response to the multiple concerns raised by the customers on Twitter, Crypto.com repeatedly stated [12] that they had resolved the issue with users’ wallets having not been timely credited by crediting the purchased amounts, but kept quiet on the more serious concern here—duplicate transactions which posted days later.

In support emails seen by BleepingComputer, when specifically asked questions about the duplicate transactions, the company responded to users with a generic response:

“Due to the recent downtime, the app experience was affected. The login and app slowness issue that was affecting app balance, as well as the issue with missing crypto purchase has been resolved.”

“We are aware of the ongoing issue with the delay of Earn interest distribution. The funds will be credited to the wallet’s owners soon.”

And, shortly Crypto.com CEO Kris Marszalek tweeted:

Crypto.com CEO Kris Marszalek acknowledges resolving the delay in crediting purchase (Twitter)

But, the unresolved matter here remains that users who had purchased cryptocurrency assets for a set amount planned on spending no more than thatset amount of money towards the purchase.

These users, however, ended up being charged twice, thrice, or even more by Crypto.com than what they had intended on spending.

Also Read: Data Protection Officer Singapore | 10 FAQs

And, because, the supposedly “declined” transactions were posted days later, many were left surprised as to what had happened.

It is not clear if the company plans on refunding users who were charged erroneously for duplicate transactions.

Interestingly though, Crypto.com has postponed today’s scheduled maintenance of their exchange due to what Marszalek calls, “Elon-induced market volatility.”

BleepingComputer reached out to Crypto.com for comment well in advance of publishing this article but we have not heard back.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us