{"id":440523,"date":"2022-05-02T05:34:51","date_gmt":"2022-05-02T02:34:51","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/lack-of-transparency-among-project-auditors-a-big-problem-hacken-ceo\/"},"modified":"2022-05-02T05:34:51","modified_gmt":"2022-05-02T02:34:51","slug":"lack-of-transparency-among-project-auditors-a-big-problem-hacken-ceo","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/lack-of-transparency-among-project-auditors-a-big-problem-hacken-ceo\/","title":{"rendered":"# Lack of transparency among project auditors a big problem: Hacken CEO"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a2f90d909cfb\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a2f90d909cfb\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/lack-of-transparency-among-project-auditors-a-big-problem-hacken-ceo\/#%E2%80%9D_Lack_of_transparency_among_project_auditors_a_big_problem_Hacken_CEO_%E2%80%9C\" >&#8221; Lack of transparency among project auditors a big problem: Hacken CEO &#8220;<\/a><\/li><\/ul><\/nav><\/div>\n<h1><span class=\"ez-toc-section\" id=\"%E2%80%9D_Lack_of_transparency_among_project_auditors_a_big_problem_Hacken_CEO_%E2%80%9C\"><\/span>&#8221; Lack of transparency among project auditors a big problem: Hacken CEO &#8220;<span class=\"ez-toc-section-end\"><\/span><\/h1>\n<p><img decoding=\"async\" src=\"https:\/\/images.cointelegraph.com\/images\/840_aHR0cHM6Ly9zMy5jb2ludGVsZWdyYXBoLmNvbS91cGxvYWRzLzIwMjItMDQvZDJkODU2N2QtM2FmMS00YzM1LWFhODItMmE0YTFmNDM3Nzk3LmpwZw==.jpg\" \/><\/p>\n<div class=\"post-content\" data-v-2a0745c6>Smart contract auditing firm Hacken CEO Dyma Budorin thinks Web3 cybersecurity providers are failing the crypto industry and that \u201chuge blind spots\u201d in market practices are impacting investor behavior.<\/p>\n<p>Budorin believes a lack of accountability and transparency in the audits many providers perform falls short of reassuring users and projects.<\/p>\n<p>Currently, smart contract auditors take no accountability if a token they have audited gets hacked due to a bug in the code. Unsettlingly, most of the largest hack events in 2022 occurred on projects that were audited by third parties. <\/p>\n<p>In a call with Cointelegraph on Apr. 27, Budorin said this makes him uneasy as it compromises the growth trajectory of the Web3 cybersecurity industry which is already lagging far <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/hacken.io\/wp-content\/uploads\/2021\/12\/hacken_strategy_2.0.pdf\">behind<\/a> non-crypto equivalents according to a report from Hacken.<\/p>\n<p>Web3 auditors take a deep dive into the code of a token in search of threats of varying severity. These audits do not assess other factors like the viability of a business model, team experience, and others.<\/p>\n<p>Budorin explained that \u201cauditors have a lot of responsibility\u201d which is being ignored because the money is coming in and there is no public outcry for better products. However, to him, the services they provide are inadequate, as he says<\/p>\n<blockquote><p>\u201cThey are missing tests, accountability, and transparency in ratings of cryptocurrencies.\u201d <\/p><\/blockquote>\n<p>Even in the rare instance that a project wanted a more robust audit, they would not be able to get it from cybersecurity firms in Web3 because Budorin says \u201ccurrently in Web3 cybersecurity, there are no companies offering recurring audits\u201d that h<a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>en monthly and go into much more depth about the project.<\/p>\n<blockquote><p>\u201cRight now, the best market practice is to get a token audit and that\u2019s it.\u201d<\/p><\/blockquote>\n<p>Budorin used token bridges as an example to demonstrate the dangers of an industry without thorough auditing mechanisms. Two of the largest crypto hacks so far in 2022 took place on token bridges Wormhole and Axie Infinity\u2019s Ronin Bridge which lost a combined $920 million. <\/p>\n<p>While hindsight is always 20\/20, it is likely that a full scope audit of any of the bridges that have been hacked this year including Wormhole, Ronin Token Bridge, Qubit\u2019s QBridge, and Meter\u2019s Meter Passport, could have prevented disaster.<\/p>\n<p>In addition to apparent bugs in the code, Budorin said that token bridges further illustrate how there are \u201ca huge amount of blindspots\u201d in cybersecurity because \u201cThere is no way of knowing who is responsible for the keys, who mints new tokens, if the tokens are properly bridged, and so on with no transparency.\u201d<\/p>\n<p><strong><em>Related: <\/em><\/strong><strong><em>Plan for $1M bug bounties and double the nodes in wake of $600M Ronin hack<\/em><\/strong><\/p>\n<p>Budorin feels that for the Web3 cybersecurity scene to really change, some onus rests on retail investors. In his view, more transparency with reliable information from accountable sources \u201crequires a paradigm shift from crypto investors,\u201d who tend to invest in hyped-up projects. <\/p>\n<p>This shift could be sparked by greater availability of information from thorough full-project audits that take into account the team, platform functionality, and other technical aspects rather than just the token.<\/p>\n<p>Currently, data aggregators CoinGecko and CoinMarketCap are the outlets of choice for investors to find information about a project. However, Budorin says those platforms are flawed because \u201cprojects are manipulating their data\u201d to show very high or very low market caps. He believes that will eventually change as auditors evolve to fill the negative space.<\/p>\n<blockquote><p>\u201cWhen there is more efficient information about the accountability of blockchain companies that issue a token, [investors] will start to compare fundamentals rather than hype.\u201d<\/p><\/blockquote>\n<p><template data-name=\"subscription_form\" data-type=\"consulting_newsletter\"><\/template><\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong>\n<\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/news\/\" data-internallinksmanager029f6b8e52c=\"2\" title=\"News\" target=\"_blank\" rel=\"noopener\">News<\/a> articles, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/general\/\" target=\"_blank\" rel=\"noopener\">General category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/cointelegraph.com\/news\/lack-of-transparency-among-project-auditors-a-big-problem-hacken-ceo\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8221; Lack of transparency among project auditors a big problem: Hacken CEO &#8220; Smart contract auditing firm Hacken CEO Dyma Budorin thinks Web3 cybersecurity providers are failing the crypto industry and that \u201chuge blind spots\u201d in market practices are impacting investor behavior. Budorin believes a lack of accountability and transparency in the audits many providers&#8230;<\/p>\n","protected":false},"author":1,"featured_media":440524,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/images.cointelegraph.com\/images\/1200_aHR0cHM6Ly9zMy5jb2ludGVsZWdyYXBoLmNvbS91cGxvYWRzLzIwMjItMDQvZDJkODU2N2QtM2FmMS00YzM1LWFhODItMmE0YTFmNDM3Nzk3LmpwZw==.jpg","fifu_image_alt":"","footnotes":""},"categories":[1],"tags":[74894,117,70375],"class_list":["post-440523","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-general","tag-blockchain","tag-business","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/440523","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=440523"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/440523\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/440524"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=440523"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=440523"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=440523"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}