Kai Sedgwick: KYC Requirements Are Making ICOs Riskier, Not Safer

sentinel n-featured kyc icos ico hackers hack data-leak crowdfunding bee-token bank-account bank aml

It’s Easier to Open a Bank Account Than It Is to Participate in an ICO

Once upon a time initial coin offerings were open to everyone. That time was last year, and since then gaining entry to ICOs has become increasingly difficult. In response to regulatory attention from the SEC, crypto startups have begun to perform due diligence on aspiring investors. Thanks to onerous KYC requirements, the pendulum has swung the other way, presenting hackers with an additional prize – the data of tens of thousands of investors.

Also read: Many Token Crowdsales No Longer That Open to the Crowds

KYC Requirements Are an Accident Waiting to Happen

It’s Easier to Open a Bank Account Than It Is to Participate in an ICOLast year, the U.S. Securities and Exchange Commission went after a number of ICOs for failing to perform due diligence to ensure their investors didn’t hail from the U.S. Spurred partially by a desire to avoid censure or shutdown from the SEC, ICOs have taken things to the opposite extreme, using Know Your Customer procedures to weed out investors from the U.S., China, and a handful of other countries. To date, all of 2018’s major crowdsales have required some sort of KYC in order to gain admittance to their whitelist, with many outsourcing the task to third parties that specialize in such matters.

To merely be considered for a token sale, it is now commonplace for an individual to have to submit a passport scan, bank statement, and various other documents and to answer a string of questions about their background and the origin of their cryptocurrency. Legolas, for example, requested that investors “Provide as much detail as possible about the origin of the BTC”. Being whitelisted for a token sale is no guarantee of participation either. Oversubscribed ICOs such as Arcblock returned ether to hundreds of participants who had failed to contribute in time or who were deemed to have “cheated” by using over the prescribed gas limit. Twitter traders now encourage investors to submit KYC to as many promising ICOs as possible, just in case they later decide to participate.

A Data Leak In the Making

It’s Easier to Open a Bank Account Than It Is to Participate in an ICO
In Sentinel’s Telegram chat, investors were deeply critical.

With ICOs now holding the passports and other identification documents of thousands of crypto investors together with their emails and wallet addresses, hackers have an added incentive to target crowdsales. Even if they’re unsuccessful in altering the contribution address, the raw data of tens of thousands of crypto holders is a honeypot of significant value in its own right. Some of that honey was stolen from The Bee Token, whose email database was accessed and used to send out phishing emails which raised over $1 million.

This week, Sentinel ICO had an even bigger fail after the passport data of its users was leaked. In a Medium post, the startup confessed that a website vulnerability had allowed uploaded files to be accessed by another user. To compound the problem, the user who discovered the flaw then claimed to have been reported to the police by Sentinel for their actions, despite having done nothing wrong.

KYC: Good for ICOs, Bad for Investors

It is hard to put a figure on the success rate for ICO whitelist applicants, though it’s likely to stand at less than 50%. At least half of the time, in other words, participants are submitting personally identifiable documents in exchange for nothing, be it due to whitelist oversubscription or network congestion that prevents them from contributing ether in time. The likelihood of that data being leaked is low, but cumulatively, over the course of dozens of KYC applications, those odds start to mount up. It only takes one failure to expose an individual’s data once and for all time. Email and wallet addresses can be changed; passports and driving licenses are permanent.

Gaining approval to participate in pre and public sales is now viewed by many ardent ICO participants as a game. The price for admission is the time it takes to complete the KYC registration process and the chance that none of the countless ICOs they apply to will suffer a catastrophic data breach. As if investing in ICOS wasn’t risky enough, KYC requirements have ironically made crowdsales even more hazardous.

Do you think KYC requirements for ICOs are excessive or necessary? Let us know in the comments section below.

Images courtesy of Shutterstock.

Keep track of the bitcoin exchange rate in real-time.

The post KYC Requirements Are Making ICOs Riskier, Not Safer appeared first on Bitcoin News.

Original article was created by: Kai Sedgwick at news.bitcoin.com

Disclaimer: This article should not be taken as, and is not intended to provide, investment advice. Please conduct your own thorough research before investing in any cryptocurrency or ICO.

Interested in Cryptocurrencies and ICO's?

Follow our telegram channel for daily cryptomarket reports!

Join @cointrends

Related Articles

pubDate Newsline
10 hours ago Three Hackers Held in China Over $87 million Crypto Theft
23 hours ago The Weekly: McAfee’s Doomed Wallet, Altcoin Panic, Binance Launches Fiat-to-Crypto
10 hours ago Three Hackers Held in China Over $87 million Crypto Theft
4 days ago Bitangels Co-Founder Sues AT&T for $224 Million Over Cryptocurrency Hack
10 hours ago Three Hackers Held in China Over $87 million Crypto Theft
1 day ago Korean Government: 11 out of 21 Crypto Exchanges Complete Security Measures
20 hours ago Prolific Bitcoin Dealer ‘Blew a Giant Hole’ Through US Legal Framework
2 days ago Funds Frozen, Account Closed: UK Banks Target Cryptocurrency Owners
2 days ago Developing an ICO Project in Russia Can Cost as Little as $1,500
2 days ago Investment Report: Gamedex
2 days ago Developing an ICO Project in Russia Can Cost as Little as $1,500
2 days ago Developing an ICO Project in Russia Can Cost as Little as $1,500
2 days ago Developing an ICO Project in Russia Can Cost as Little as $1,500
3 days ago Regulations Roundup: This Fall May Bring More Crypto-Friendly Jurisdictions
2 days ago Funds Frozen, Account Closed: UK Banks Target Cryptocurrency Owners
1 week ago Regulations Round-Up: Central Bank-Issued Digital Currencies, Regulatory Clarity
1 week ago Video Call KYC Verification
1 week ago Quoine introduces video call KYC verification
2 weeks ago Korean Crypto Exchange Bithumb Suspends Opening New Virtual Accounts
2 months ago Chilean Cryptocurrency Exchange Launches in Argentina
2 months ago Syscoin 3.0.5 Release and Security Warning Issued
8 months ago SK Regulator Fines Exchange Operator Bithumb 60 Million Won for Leaking Customer Data
6 months ago The Bee Token Crowdsale Stung by $400k Phishing Scam

Stay on top of Altcoins and ICO trends.

Subscribe to our free Weekly Cryptomarket report

Delivered once a week, strongly to your inbox.

Subscribe to our mailing list
August 20, 2018

Japan Roundup: Public Companies Unveil New Mining Plan, Exchange, Token Fund

Three Japanese public companies have individually made announcements regarding their cryptocurrency operations. Forside has grown its mining operation with a plan to sell 7nm bitcoin mining rigs. Farsteps is planning a Singapore exchange launch. Meanwhile, Line Corp, the operator of...

From: Kevin Helms

Second Hand Rigs Are Dumped as the Solo Mining Dream Dies

In the summer of 2017, rising cryptocurrency prices led to a run on high performance graphics cards. Coveted cards with a high hashrate were snapped up like proverbial hot cakes, leaving gamers, scientific researchers, and anyone else who relied on flagship GPUs priced out as the cryptocurrency...

From: Kai Sedgwick
August 19, 2018

Three Hackers Held in China Over $87 million Crypto Theft

Three suspects have been detained by Chinese police in connection with an alleged cryptocurrency theft. The supposed hackers stole bitcoin and other digital assets worth an estimated $87 million USD. Authorities say this is the biggest heist of this type in the People’s Republic so far. Also...

From: Lubomir Tassev

SHA-256 Mining Hashrate Climbs Significantly in One Year

Over the last year, SHA-256 mining, the process that’s used to find blocks on both the Bitcoin Cash (BCH) and Bitcoin Core (BTC) networks, alongside a slew of other cryptocurrencies, has grown exponentially. Digital asset trading markets have been in a slump over the last eight months of 2018,...

From: Jamie Redman

India Bitconnect Head Arrested

Alleged India Bitconnect head, Divyesh Darji, was arrested this week at a airport in Delhi as he arrived from Dubai. He and conspirators are accused of bilking millions of dollars (Rs 88,000 crore) from Indian investors seeking to find financial refuge during the government’s demonetization...

From: C. Edward Kelso

44% of American Executives Think “Blockchain Is Overhyped”, Deloitte Survey Finds

New indicators point to corporate executives starting to wisen up to the notion that so-called blockchain technology is some kind of cure-all drug for their industries that they can just extract from Bitcoin and drop the cryptocurrency behind. The latest example of this is a recent survey by...

From: Avi Mizrahi
Upcoming ICO's
This week overview
Token Name Starts
RoBust Defense Token (RBDT) logo RoBust Defense Token (RBDT) Today
Rubius (RUBY) logo Rubius (RUBY) 1 days
Cryptocurrency rates
*Last hour average price&change
Coin Name Price Hour
Bitcoin logo BTC $6468.49412791 -0.16%
Ethereum logo ETH $293.313827029 -2.02%
Ripple logo XRP $0.3380953433 -1.22%
Bitcoin Cash logo BCH $549.233714833 -1.88%
EOS logo EOS $5.1190619127 -1.76%
Stellar logo XLM $0.2281080622 -0.39%
Litecoin logo LTC $55.8145420782 -2.29%
Tether logo USDT $1.0027838193 0.03%
Cardano logo ADA $0.0996025332 -1.22%
Monero logo XMR $98.0806894828 -0.12%
Tronix logo TRX $0.0219889661 -0.85%
IOTA logo IOT $0.5181363936 -1.44%