Why CyStack
Products
CyStack Intelligent Products
Explore our all-in-one security suite for robust digital protection, covering web app scans, device management, and secret safeguarding.
CyStack VulnScan
Popular
Web app security scanning & monitoring with external firewall methods. Detect vulnerabilities, manage lists & certificates easily.
Locker Secrets Manager
New
Securely manage tokens, passwords, certificates, and keys with an intuitive UI, CLI, or SDK.
SafeChain Blockchain Security
Smart-contract scanner & blockchain monitor. Identify vulnerabilities & get token anomaly alerts.
Locker Password Manager
Securely store passwords, manage sensitive data, & enable one-click logins.
CyStack Endpoint
New
Advanced device tracking, remote management & access controls for all-sized businesses.
WhiteHub Bug Bounty
Elevate cybersecurity. Engage 3000+ hackers, tailor rewards.
CyStack Trust Center
Simplify showcasing cybersecurity commitment. Auto-generate dedicated security page integrated with domains.
CyStack Data Leak Detection
Secure your brand, ideas, and customer information by quickly detecting data leaks to steer clear of costly breaches.
Services
Security Assessment
- Penetration Testing
- Red Teaming
- Infrastructure Audit
- Performance Testing
Security Operations
- Vulnerability Management
- Security Monitoring
- Managed Bug Bounty
Security Consulting
- Security Policy Development
- Incident Response
- Security Training
Blockchain Security
- Blockchain Protocol Audit
- Smart Contract Audit
Solutions
By Use Case
For Startup
For Degree 13 Compliance
Anti-Ransomware
Security Audit
Security Operations
Data Security
Security Compliance
Blockchain Security
By Industry
For Public Sector
For Financial Services
For Ecommerce
For Healthcare
For Blockchain Companies
Looking for something?
We provide you with the latest news, trends, and insights in the fast-paced world of tech. Join us on this exciting journey and discover the transformative power of technology today.
Company
- About Us
- Brand Kit
- Press
- CareersHiring
- Contact Us
Resources
- Blog
- Case Study
- Research
- Help Center
- Projects
- Library

English

Vietnamese

HomeBlogCybersecurity For Initial Coin Offering

Blockchain Security

Cybersecurity For Initial Coin Offering

3 minutes read

June 29 2022

CyStack Editor

Reading Time: 3 minutes

Nowadays, more and more companies raise funds through an Initial Coin Offering (ICO). By launching an ICO, a company can create a new coin to make money. In addition to Bitcoin, Ethereum, and Litecoin, there are a large number of other coins in the market. However, companies might face security challenges when using cryptocurrency and launching ICO.

The following are some steps that companies should take careful consideration in a coin life cycle:

Coin offering: Hackers can attack offering websites to modify provided services.
Coin trading: DDoS attacks make cryptocurrency websites or applications unavailable to investors.
Currency exchanges: When trading currencies, an investor is likely to face risks of DDoS attacks or account takeover attacks.
Wallet: It is used to archive, receive and send crypto coins. Therefore, it is a lucrative target of malicious hackers.

Let’s learn about some aspects of a cryptocurrency attack and how to protect your assets against these attacks.

What is ICO?

When launching an ICO, a company will create a new cryptocurrency and sell it to investors to receive money or another cryptocurrency, usually Bitcoin or Ether. Investors can use these cryptocurrencies to pay for services provided by this company or create transactions.

ICO is similar to crowdfunding because it is available for every investor without too many regulations. Companies can raise a lot of money through an ICO, for example, Blockchain Filecoin raised over 250 million dollars through ICO.

New cryptocurrency published in an existing platform like Ethereum, following ERC-20 standard, does not require a firm knowledge of the underlying blockchain technology of cryptocurrency.

ICO attack

Blockchain technology vulnerabilities

Since cryptocurrency was first introduced, it has brought high interest and value to investors. Therefore, more and more hackers are interested in exploiting the vulnerabilities of this market. Although blockchain technology is decentralized and immutable, many vulnerabilities are still found and exploited.

***Blockchain technology still has many vulnerabilities targeted by hackers***

Direct attack

A typical example of direct attacks is an attack on the ICO of CoinDash – a start-up working in cryptocurrency portfolio management and related services.

According to the CoinDash blog, when the contract’s address provided by Ethereum was public, the attacker changed the official address to an incognito address. Due to high demand at that time, around 43,000 Ether was redirected to the incognito account within only 7 minutes. The website was shut down immediately as soon as it was found hacked. The attack caused a loss of about 7 million USD. Finally, it is defended against the attacker by the web application firewall.

Another example is a DDoS attack on the Bitcoin Gold website when it was introduced to the market. The attack made the website unavailable for a while. Although this did not directly affect the coin, it damaged the credibility of the whole project.

Account attack

Electroneum – a cryptocurrency provider – informed about a delay of their website and application due to a DDoS attack. 140,000 investors could not access their accounts and their cards were frozen. Finally, it was protected by using DDoS security.

How to protect your cryptocurrency

Web application firewall

Web Application Firewall (WAF) introduced by Gartner is a leading web application for four years continuously. It analyzes users accessing your website to protect your website from attacks. WAF can defend against web attacks including OWASP, which is one of the top 10 security threats and malicious bots. It controls the client accessing your application with a traffic filter based on different factors.

WAF analyzes all aspects of your website to detect attacks, which will keep your website away from authentication requests such as CAPTCHA.

Comprehensive security platform

After safely introducing your crypto coin, you should be aware of vulnerabilities that might be exploited through a cryptocurrency life cycle, including DDoS, cryptocurrency trade, and e-wallet. We will do more research on this problem and provide you with suitable solutions soon.

Use CyStack Platform to discover security vulnerabilities timely to prevent your cryptocurrency exchanges from attacks.

CyStack blog

Interviews, tips, guides, industry best practices, and news.

Sign up for our newsletter

Be the first to know about releases and industry news and insights.

We care about your data in our Privacy Policy.

CyStack Intelligent Products

CyStack VulnScan

Locker Secrets Manager

SafeChain Blockchain Security

Locker Password Manager

CyStack Endpoint

WhiteHub Bug Bounty

CyStack Trust Center

CyStack Data Leak Detection

By Use Case

By Industry

Looking for something?

Cybersecurity For Initial Coin Offering

Table of Contents

What is ICO?

ICO attack

Blockchain technology vulnerabilities

Direct attack

Account attack

How to protect your cryptocurrency

Web application firewall

Comprehensive security platform

CyStack blog

Sign up for our newsletter

CyStack and Cookies

Audit

Security Operations

Data Security

Security Compliance

Blockchain Security

Company

Resources