- Friend.tech Data Breach Exposes Personal Information of Over 100,000 Users - September 16, 2023
- Exactly Protocol Offers $700K Bounty for Information on $7.2 Million Theft - September 16, 2023
- MEV Bots Loot $2 Million from Friend.tech Accounts - September 16, 2023
In a glaring cybersecurity lapse, over 101,000 users of the rising Friend.tech platform had their personal data laid bare on GitHub. Banteg, an affiliate of the Yearn Finance project, was responsible for disclosing the database. This exposed compilation houses Base blockchain wallet addresses, corresponding Twitter handles, and even information about users’ funding sources.
Perhaps even more worryingly, the GitHub revelation also shone light on potential security lapses inherent in friend.tech’s permission settings. It’s alleged that many users inadvertently granted Friend.tech the authority to publish posts on their behalf, possibly due to a lack of comprehensive understanding or transparent consent procedures.
This breach disclosure trails a recent insight from Spot On Network analysts, who found vulnerabilities in Friend.tech’s API interface. This specific glitch allowed external parties to view wallets set up by users through the platform’s API.
Friend.tech’s Meteoric Rise
Ironically, this data leak coincides with a significant milestone for Friend.tech. A mere day prior to the disclosure, the platform reported raking in an impressive $1.42 million in user commissions within 24 hours. This astounding figure not only overshadows Bitcoin’s $422k but also saw Friend.tech leapfrog decentralized giants like Uniswap. The recent windfall positions Friend.tech as a top contender in the crypto commission space, surpassed only by Ethereum (ETH) and Lido (LDO).
Rooted in the second-level blockchain Base, Friend.tech is fashioned as a Web3 social application. Its primary demographic includes crypto influencers boasting sizable followers. The platform offers these influencers an avenue to earn from trading commissions. Furthermore, Web3 projects aiming to foster stronger connections with venture capitalists and crypto industry stalwarts find a partner in Friend.tech.
An enigmatic developer, Racer, is the reputed brainchild behind Friend.tech. If industry insiders are to be believed, Racer, before Friend.tech, had left indelible marks with creations like TweetDAO and Stealcam — both of which are social networks centered around non-fungible tokens (NFTs).