Cybersecurity

The Wolves Got Inside the Pen: Kraken's Little Extortion Problem

Victor Woolridge

2 min read
The Wolves Got Inside the Pen: Kraken's Little Extortion Problem

I have seen a great many things in my career. I have watched entire mainframes disappear into a skip. I have personally wound magnetic tape by hand in a server room that smelled of cigarettes and institutional dread. And I can tell you, with absolute certainty, that none of this would have happened on magnetic tape.

But here we are.

Kraken, the cryptocurrency exchange (already a red flag, frankly), has announced that a criminal outfit managed to get inside their operation and film their internal systems. Systems that host client data. The wolves did not just sniff around the fence line this time. They walked right through the gate, sat down, and started recording a documentary.

Now they are threatening to release the footage unless Kraken pays up. Classic extortion. The oldest play in the book. I wrote a memo about this exact scenario in 1987. Nobody read it. Nobody ever reads the memo.

Here is what makes this particularly grim: this was an insider situation. Someone inside the pen let the wolves in, or was the wolf wearing wool. The Shepherds at Kraken are now dealing with the consequences of trusting their own flock without verification. Shocking. Truly shocking. In the old days, you knew everyone in the building by face, by name, and by the sound of their footsteps in the corridor.

The Sky Pasture crowd will tell you that "zero-trust architecture" is a modern innovation. It is not. It is just what paranoid people like me have been practicing since the Carter administration. You trust no one. You verify everything. You keep a written log. On paper. With a pen.

The fact that internal systems were apparently visible enough to be filmed and used as leverage suggests the Electric Fence had some significant holes in it. Someone did not do their shearing on schedule. Now the whole flock is exposed and the wolves are holding the footage.

Cryptocurrency, by the way, is the Sky Pasture of finance. I want that on the record.

Remediation

Right. Pay attention, because I am only going to say this once.

First: Audit your insider access immediately. Every lamb with credentials gets reviewed. Today. Not next quarter.

Second: Restrict physical and logical access to systems containing client data. If someone can film your internal architecture on a phone, you have already lost.

Third: Do not pay the extortion. You will simply become a repeat customer.

Fourth: Implement proper logging and monitoring so you know when a wolf is in the building before they start rolling cameras.

Fifth: Stop putting everything in the Sky Pasture and hoping for the best.

Wool does not grow back overnight, and neither does your reputation.

Original Report: https://www.bleepingcomputer.com/news/security/crypto-exchange-kraken-extorted-by-hackers-after-insider-breach/