Hacken

Please describe your company and your position there.

Cirus unlocks data as a form of digital currency, enabling people across the world to freely participate in value generation from their most common digital asset. We accomplish this with a two-tiered model: hardware and virtual systems. The CIRUS device replaces a traditional Wi-Fi router and allows the user to collect high-quality data from all internet-enabled devices. The Virtual Cirus is a lightweight client enabling node creation for the network and baseline data collection.

The network will be supported on ETH L2 standards and we aim to build this solution on Polygon. Our enterprise go-to-market strategy enables our hardware solution to reach millions of users through direct engagement with ISPs (major contracts to be announced). The virtual solution will be accessible worldwide. Our long-term aim is to bring new users into the digital economy by way of their data asset or “found-money” to open further avenues of wealth creation. This will bridge the adoption gap in crypto and allow new inroads into DeFi and wallet applications as we expand.

For what projects/services did your company hire Hacken?

The key reason behind our decision to start cooperating with Hacken was to ensure the security of our end users. Every day we could hear from our industry partners and other players a lot of information about the intensification of cybercrimes. Companies were losing millions of dollars due to cyberattacks and we realized that in the near future, the scope of threat would become even much greater.

That is why we have recently decided to work with Hacken, the company that has become one of the most trusted security auditors in the industry. We are an emerging but highly promising project. Our users expect us to get high-quality solutions while facing minimal security risks. And we decided that cooperation with Hacken would allow us to meet users’ expectations related to security. We work with data and it’s our obligation to ensure the ultimate security of users’ information since they are our main asset.

How did you select this vendor and what were the deciding factors?

Hacken came highly recommended from several of our partners who's opinion we value and they're held in a very high regard across the space specializing in smart contract audits. Hacken was the perfect fit.

Describe the project in detail and walk through the stages of the project.

The Hacken team performed the smart contract audit for our project.

How many resources from the vendor's team worked with you, and what were their positions?

We communicated directly with 2 people - Project Managers

Can you share any outcomes from the project that demonstrate progress or success?

Yes, the smart contract audit performed by Hacken experts allowed us to see our vulnerable points so that we could timely introduce fixes to protect our users. The cooperation with Hacken has fully met our expectations.

How effective was the workflow between your team and theirs?

The communication was very strong and we were updated every step of the way. All deadlines were not only met but the work was actually delivered ahead of schedule at a very critical point in our journey.

What did you find most impressive or unique about this company?

Strong expertise. In our opinion, this team knows everything about cybersecurity. They employ really great specialists.

Are there any areas for improvement or something they could have done differently?

Maybe. Every company has room for improvement. In our opinion, the Hacken team met all our expectations and know in what direction they should move. They have a great chance to strengthen their image in the market.

Please describe your company and your position there.

Biki is a global blockchain technology service provider and one of the top-20 cryptocurrency exchanges on CoinMarketCap. The users of the exchange can trade more than 150 cryptocurrencies and 250 trading pairs. Biki serves more than 3 million users worldwide and is focused on making their trading experience as convenient and safe as possible.

For what projects/services did your company hire Hacken?

We realized that the frequency of cyberattacks against major cryptocurrency exchanges increased dramatically in the previous year. Hacken is a leading cybersecurity expert with deep expertise in web application security assessment whose professionalism is recognized in the market.

What were your goals for this project?

Hacken performed the web application & API security assessment. Hacken carried out vulnerability scanning to identify the application’s security weaknesses. Hacken has checked the system configuration and whether the required patches were installed to ensure the security of the system. The company’s specialists investigated web applications, customer scripts, and programs to find any loopholes. Based on the results of the testing, Hacken provided a list of identified vulnerabilities and the recommendation by implementing which Biki would strengthen its security.

How did you select Hacken?

We realized that the frequency of cyberattacks against major cryptocurrency exchanges increased dramatically in the previous year. Hacken is a leading cybersecurity expert with deep expertise in web application security assessment whose professionalism is recognized in the market.

Describe the project in detail.

We have conducted a few strategic calls with the Hacken team to discuss the goals of our cooperation, its scope, and the required timeline. Based on the information received Hacken team distributed tasks among its members and started testing our product.

What was the team composition?

The team working on the security assessment of the exchange encompassed the Hacken project manager and two penetration testers who were in constant contact with our specialists. Hacken team performed the security assessment within 10 days.

Can you share any outcomes from the project that demonstrate progress or success?

Based on the results of the web application & API security assessment, Hacken specialists determined that the level of risks for Biki was low. The cooperation with Hacken has allowed us to identify and eliminate system vulnerabilities that may have been exploited by hackers to commit cyberattacks.

How effective was the workflow between your team and theirs?

The cooperation process was highly effective since our team was open to any suggestions and recommendations made by Hacken specialists while security engineers of Hacken immediately informed us of any updates and progress.

What did you find most impressive about this company?

Structured and highly professional approach to security testing and focus on communication with the customer so that Hacken did not miss any details when performing security assessment

Are there any areas for improvement?

I strongly believe that Hacken specialists provided the services of the highest quality and I do not have any complaints about the company’s work. Hacken team has confirmed its high level of professionalism in practice!

Please describe your company and your position there.

XT.com is the first socialized digital asset-trading platform that was created in 2018. There are more than 7,000,000 users in our ecosystem while 2,000,000 users are registered. The list of services provided by XT.com includes OTC trading, contract trading, margin trading, exchange trading, and other services. The exchange allows users to perform trades in more than 100 currencies and there are more than 300 trading pairs on the platform.

The company has operation centres in Japan, South Korea, Spain, Singapore, and other countries. The list of our partners includes many leading and highly reputable brands such as CoinGecko, Coinhills, Xangle, and others.

For what projects/services did your company hire Hacken?

Cybersercurity

What were your goals for this project?

We want to make our exchange more safe .

How did you select Hacken?

It was recommend by friends in crypto industry

Describe the project in detail.

In 2020, we started cooperating with Hacken to strengthen our cybersecurity. We realized that the higher the volumes of assets and information the platform accumulated, the more lucrative it became for hackers. We decided to work with Hacken on making our platform secure for users since this company had deep market expertise and other highly reputable brands were leaving positive feedback about the quality of services provided by Hacken. It was a great honour for us to appoint Hacken as our cybersecurity expert.

What was the team composition?

We were focused mainly on protecting users’ funds and information from the risk of being stolen by criminal groups through cyberattacks. We strived to make the trading experience of our users more secure so that they would be able to focus solely on trading instead of worrying about security risks.

Can you share any outcomes from the project that demonstrate progress or success?

The Hacken team performed external penetration testing for a web application and an Android app. Hacken specialists reviewed our internal policies governing crypto exchange cybersecurity. The company provided us with a report containing the list of identified vulnerabilities and recommendations on fixing them.

How effective was the workflow between your team and theirs?

The communication process between our team and Hacken specialists was clear and very transparent. We saw that Hacken had deep experience in establishing effective communication with clients and, generally, Hacken did not even give us a chance to feel frustrated since we were immediately informed about progress. Also, the Hacken team actively communicated with our management and invited our CEO, Weber Woo, to attend Hacken online AMA session.

What did you find most impressive about this company?

The company’s open-mindedness and cooperative spirit. Also, I cannot but mention the company’s strong attention to customer’s concerns.

Are there any areas for improvement?

XT.com team strongly believes that even the most professional and successful companies have room for further improvement. That is why we wish Hacken to continue making the crypto world community better protected from security risks.

Please describe your company and your position there.

P2PB2B is a next-generation cryptocurrency exchange that is focused on serving its users. The platform was founded in 2018 and since then has become a trusted partner of a number of leading crypto projects. The key distinctive feature of the exchange is the ability to process up to 10,000 trades per second and 1,000,000 TCP connections. The exchange supports more than 200 cryptocurrencies as well as fiat money and this figure is likely to increase in the coming years. The company is focused on ensuring the ultimate protection of user’ data and assets and that is why 95% of cryptocurrencies are stored in cold wallets.

For what projects/services did your company hire Hacken?

Identification of vulnerabilities via the conduct of a bug bounty program was the main objective for our cooperation. We were interested in detecting such vulnerabilities as remote code execution, server-side request forgery, business logic issues, etc. Apart from detecting major vulnerabilities, we were also interested in identifying even minor bugs that could cause serious business implications.

What were your goals for this project?

Apart from detecting major vulnerabilities, we were also interested in identifying even minor bugs that could cause serious business implications.

How did you select Hacken?

Although according to the CER rating, we are ranked 12th most Trust Core secure crypto exchanges, we understand that at the time when many leading crypto exchanges experience serious cyberattacks we cannot underestimate the importance of constant strengthening of our resistance to cyber threats. Hacken is a highly reputable brand in the field of cybersecurity consulting whose professionalism is recognized by leading market players. That is why cooperation with Hacken was the most obvious choice for us.

Describe the project in detail.

We conducted a series of strategic calls with the Hacken team to discuss the scope of the project and its details. Hacken specialists clearly articulated the bug bounty program procedure and kept constant contact with us during the program execution.

What was the team composition?

Customer manager and tech team

Can you share any outcomes from the project that demonstrate progress or success?

Thanks to the bug bounty program on HackenProof Platform, we revealed the vulnerabilities that had not been detected before. As a result, we have successfully addressed the bugs in question before hackers could exploit them to steal users’ assets or private data. The cooperation with the Hacken team has allowed us to sustain our status as one of the most reliable cryptocurrency exchanges in the world.

How effective was the workflow between your team and theirs?

Yes, we are fully satisfied with the cooperation process with Hacken. Hacken specialists strictly obeyed all guidelines and cooperation frameworks developed before the launch of the bug bounty program.

What did you find most impressive about this company?

Reliability, ability to listen to our considerations, and focus on details.

Are there any areas for improvement?

P2PB2B team considers Hacken as a top specialist in the field of cybersecurity and I strongly believe that in the near future this company will only strengthen its status as a highly reputable brand. We are 100% satisfied with the services provided by Hacken.

Introduce your business and what you do there.

I’m the head of security of a cryptocurrency platform.

What challenge were you trying to address with Hacken?

We needed someone to help us with security audit testing.

What was the scope of their involvement?

Hacken provided a security audit and penetration testing for our company. They prepared the report for us with the results of the penetration testing, as well.

What is the team composition?

There were about four people that I interacted with. I worked with the security team, including the project manager.

How did you come to work with Hacken?

I met them at a security conference. We started communicating and when we had a need for penetration testing and a security audit, we hired them.

How much have you invested in them?

We spent around $13,000.

What is the status of this engagement?

We worked with them from August–September 2020. The project only took about one month.

What evidence can you share that demonstrates the impact of the engagement?

After they did the penetration testing and security audit, they found a few vulnerabilities. In my opinion, I’d say they were almost perfect. Everything in the project went perfectly and I was satisfied.

How did Hacken perform from a project management standpoint?

Hacken performed well in regard to project management. We communicated through email and messenger.

What did you find most impressive about them?

I was impressed by how quickly they did all of the testing. When we’d worked with other companies, it took about three months, but with Hacken, it was done within one month. We checked their quality and it was good. 

Are there any areas they could improve?

No, everything was good. 

Introduce your business and what you do there.

I’m the CTO of a cryptocurrency exchange with offices in China and Singapore.

What challenge were you trying to address with Hacken?

The security of our system is always our top priority, and we needed help from a professional in this area.

What was the scope of their involvement?

Hacken has provided penetration testing for our website as well as our Android and iOS app. They identified issues and ran another round of tests after we made fixes.

They’ve also provided bug reporting, mediation services, and support.

What is the team composition?

Evgenia (Co-Founder & CEO) is my main contact.

How did you come to work with Hacken?

We approached a few companies, and we found Hacken to be the most professional. They had good experience and a strong technical team.

What is the status of this engagement?

We started working with Hacken in March 2020, and it’s ongoing.

They found issues with our security certificates after the retesting, and it took us 3–4 months to obtain new certificates and release the products into production. That extended our timeline.

What evidence can you share that demonstrates the impact of the engagement?

Hacken has delivered more than we expected. We’re quite satisfied with them.

How did Hacken perform from a project management standpoint?

We have a time zone difference of about six hours, but we’ve managed to communicate effectively. We have regular teleconferences, and they always respond quickly during working hours.

What did you find most impressive about them?

They’re quite professional in the cybersecurity area.

Do you have any advice for future clients of theirs?

So far, so good. I don’t have any specific suggestions.

Please describe your company and your position there.

Paid Network is a blockchain solution for legal agreements. Right now, one of our branchs (ignition) are making Initial DEX Offering (IDO's). I am a DevOps, owning all the security stories along with my team.

For what projects/services did your company hire Hacken?

To audit our Blockchain smart Contracts, and security assesment in general, related with blockchain and cryptocurrency

How did you select Hacken and what were the deciding factors?

We research several vendors, and we also work with anothers, but Hacken was the one with the best client response, and also show expertise in their fields

Describe the project in detail and walk through the stages of the project.

They analyze our Smart Contracts and performance several test on it. After that, in this first round, they always find some security holes, bugs or errors, they give us their report and then our developers run the fixes. There is a second round of test, and normally all the holes are fixed, but in case of another issue, we have another correction.

How many resources from the Hacken team worked with you, and what were their positions?

We had a Project Manager, 2 blockchain developers, 2 pentester

Can you share any outcomes from the project that demonstrate progress or success?

Great team, Hacken is amazing, always get quick support, great acctitude from the team, great proffesionalism. 1000% recommended

How effective was the workflow between your team and theirs?

Its just great. When you are a proffesional and really know your bussiness, its just easy work with you

What did you find most impressive or unique about this company?

They've extended their background and clarification on the subject to ensure the project's success.

Are there any areas for improvement or something they could have done differently?

Maybe with the time, we can adjunst the prices xDDD

Please describe your company and your position there.

Our company is the first DeFi hack mitigation tool for token creators. Our tool freezes fraudulent transactions based on a set of fraud identification parameters and returns stolen funds back to the owner’s account. The creators of tokens need to insert our code into their protocols to mitigate losses. Our stake-based reward system incentivizes the community to develop increasingly efficient hack-spotting mechanisms - the spotter who took action first gets the reward. Our project is aimed at preventing malicious actors from compromising the safety of users and their assets.

For what projects/services did your company hire Hacken?

We are a new project in the market. At the beginning of this year, our team realized that there are numerous security risks existing in the industry that could affect our customers, their assets and, thus, our reputation. That is why we decided to look for a reputable security auditor. Based on the feedback made by other market players and the information found on media channels, we decided to choose Hacken as our security auditor since this team was known for working closely with projects operating in the field of DeFi.

How did you select this vendor and what were the deciding factors?

Our main objective was to reveal security issues that could have been overlooked by our researchers. We realized that our expertise was not strong enough to know any point that could be noticed by malicious actors. We treated cooperation with Hacken as an opportunity to make our product highly secured for clients.

How many resources from the vendor's team worked with you, and what were their positions?

1 representative

Can you share any outcomes from the project that demonstrate progress or success?

Yes, our expectations were quite high and we are happy to say that the Hacken team could meet them.

How effective was the workflow between your team and theirs?

effective. We did not have any reasons to doubt the high level of professionalism of the Hacken team. We were aware of all activities performed within the framework of our cooperation and the communication process is clear, structured, and customer-centered.

What did you find most impressive or unique about this company?

Long-term vision. Hacken specialists have focused on long-term results instead of delivering solutions that only have immediate effects. They were focused on being a few steps ahead of any malicious actors and we liked it very much.

Are there any areas for improvement or something they could have done differently?

Yes, there are no companies in the market that are excellent. We strongly believe that the Hacken team will find even more methods to make customers feel confident. Hacken is a great company at the core of which are its professionals.

Please describe your company and your position there.

Remitano is the company acting as the escrowed P2P Bitcoin marketplace. We allow people to safely buy/sell Bitcoin while paying as low fees as possible and all in a very convenient way. Our team supports customers 24/7 to ensure that they get the highest quality service. We are serving customers from Vietnam, Nigeria, Kenya, Cambodia, and many other countries. We have already served 1.5M+ customers and are focused on expanding our presence in the industry.

For what projects/services did your company hire Hacken?

We have experienced significant market growth for the last few months. We have realized that the more clients we serve and the more assets we handle, the higher the risks that malicious actors will try to attack us. That is why in April this year our leaders decided that it was high time to start cooperating with a reputable security vendor. We had a few companies to choose from but based on market reviews and feedback received from our partners we decided to start working with the Hacken team.

We strived to make our product resistant to the digital threats existing in the industry while preparing the ground for addressing future security risks. Our main goal is to make customers realize that their assets are in safety. Thereby we can win their trust and loyalty. Also, by cooperating with Hacken we want to show our partners that security is a top priority for us.

How did you select this vendor and what were the deciding factors?

We got references from our other partner and we also searched more similar firms in the industry and compare the service packages, price, repuation...

Describe the project in detail and walk through the stages of the project.

They performed a thorough security audit of our website and web apps, identifying potential risks in our infrastructure.

How many resources from the vendor's team worked with you, and what were their positions?

I'm not quite about the number of team members involved in the project but the team has performed well, timely, they have project leader to coordinate the project and some pentetration testers to perform.

Can you share any outcomes from the project that demonstrate progress or success?

Hacken team performed the penetration testing for our project and upon detecting security flaws they instructed us on how to eliminate all these issues so that to leave hackers no chance to compromise our systems.

How effective was the workflow between your team and theirs?

The communication process between us and Hacken team fully met our expectations and, generally, was very effective. All information provided by Hacken specialists was structured, detailed, and up-to-date. Also, these guys were in constant contact with us when we needed their assistance such as recommendations or instructions. Based on our communication experience, we can say that Their team was not only composed of highly skilled researchers and experts but also great communicators.

What did you find most impressive or unique about this company?

The straightforward cooperation process. This team provided us only the required information and did not overburden us with details that could not bring any value to us or cause misunderstanding.

Are there any areas for improvement or something they could have done differently?

Of course, every company has room for improvement. Hacken experts have fully met our expectations but we are sure that their potential is tremendous. This team can become a cybersecurity guru on a global scale and we wish these guys to achieve their targets. It’s a great pleasure for us to cooperate with this company.

Please describe your company and your position there.

Kuna.io is the first public cryptocurrency exchange in Ukraine and the CIS countries. The exchange serves over 150,000 users whose accounts are backed by real funds. Sam Kaploushenko, CEO

For what projects/services did your company hire Hacken?

We decided to cooperate with Haсken since this company had strong expertise and reputation in the field of cybersecurity in the crypto industry. Thus, the choice was obvious.

What were your goals for this project?

The assessment of the security capabilities of our product and infrastructure constituted the main goal for the project. Haсken perfectly imitated hacker attacks and enabled us to evaluate the risks and fix all identified vulnerabilities.

How did you select Hacken?

We were looking for a reputable cybersecurity company to conduct this type of testing and Hacken was the only provider that met all the requirements of cost, quality, expertise, and legal status.

Describe the project in detail.

Initially, we held strategic meetings to discuss the project’s goals, scope, and timeline. Then, the tasks were assigned to project participants. In 2 weeks, we received a preliminary report on the assessment of vulnerabilities and the associated risks.

What was the team composition?

The team encompassed project managers from both sides, the technical team from our side, and the security engineers from the side of Haсken.

Can you share any outcomes from the project that demonstrate progress or success?

We identified vulnerabilities in our product and based on the received recommendations implemented measures to improve our security.

How effective was the workflow between your team and theirs?

The communication was well organized and structured. They met all the deadlines, and the process was very clear.

What did you find most impressive about this company?

Unique approach to cybersecurity, broad experience in organizing collaboration with hackers, and deep understanding of cybersecurity testing.

Are there any areas for improvement?

Nothing on top of my mind.