This Dark Market Wants to Pay You Bitcoin to Find Security Bugs

Bug bounty hunters could make as much as 10 bitcoins identifying security problems at the popular dark marketplace Hansa.

AccessTimeIconFeb 6, 2017 at 7:53 p.m. UTC
Updated Sep 11, 2021 at 1:04 p.m. UTC

Bug bounty hunters could make as much as 10 bitcoins identifying security problems at the popular dark marketplace Hansa.

Taking a page from leading tech companies which offer cash rewards to developers that spot code issues, administrators for the market announced last week that it would pay 10 BTC for "vulnerabilities that could severely disrupt HANSA's integrity". The program was first reported by CyberScoop.

For bugs that aren’t as critical, admins said they would offer 1 BTC, with 0.05 BTC being put up for display issues and other minor problems.

There are rules for the program, however. Prospective bounty hunters are asked not to make the exploits public prior to disclosing them to the market’s operators, or undertake any attacks that might harm Hansa users. The more details that are provided, the admins wrote, "the higher the chance a payout will be awarded".

The admins went on to explain:

"To be eligible, you must demonstrate a security compromise on our market using a reproducible exploit. Should you encounter a bug please open a ticket and inform us about your findings."

In a way, the bug bounty program further highlights the dark market ecosystem’s continued use of bitcoin as a financial tool. Years before, it was the now-defunct Silk Road that relied on bitcoin as a payment tool, though today markets have begun looking to other digital currencies like monero.

Social media posts suggest that at least one site-critical bug has been identified, with CyberScoop reporting that others had been found since the program’s launch.

Image via Shutterstock


Read more about

DISCLOSURE

Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

The leader in news and information on cryptocurrency, digital assets and the future of money, CoinDesk is a media outlet that strives for the highest journalistic standards and abides by a strict set of editorial policies. CoinDesk is an independent operating subsidiary of Digital Currency Group, which invests in cryptocurrencies and blockchain startups. As part of their compensation, certain CoinDesk employees, including editorial employees, may receive exposure to DCG equity in the form of stock appreciation rights, which vest over a multi-year period. CoinDesk journalists are not allowed to purchase stock outright in DCG.

Trending

1
CoinDesk - Unknown
Ethereum Scaling Solution Immutable X Will Allow Ether-to-Dollar Withdrawals

The tool is one of the first layer 2 services to allow users to withdraw U.S. dollars.

CoinDesk - Unknown
2
CoinDesk - Unknown
Animoca Brands Leads $32M Funding Round for Planetarium Labs

The capital will help the Web3 gaming company develop its community-driven network.

CoinDesk - Unknown
3
CoinDesk - Unknown
Solana Labs, Multicoin Accused of Violating Securities Law by SOL Investor

Solana’s SOL token is an unregistered security whose insiders have benefitted while retail suffered, the suit alleged.

CoinDesk - Unknown
4
CoinDesk - Unknown
First Mover Asia: How Inaccurate Data Misled Investors to See Massive Outflows From This Crypto Exchange; BTC Holds Steady Over $20K

KuCoin founder Johnny Lyu said those data feeds plus mislabeled, on-chain wallets propagated rumors last week that led to the token exodus; ether rises in Wednesday trading.

CoinDesk - Unknown