New Ars Technica Report Says DX.Exchange Has Security Concerns, Users’ Data Leakage Revealed

Newly launched crypto exchange, DX.Exchange – also known for having been built on NASDAQ’s, “market leading matching technology,” – has sparked concern among one unnamed trader, who has since revealed its flaws.

In particular, it has been found that DX.Exchange’s user information (i.e. personal, account and passwords) have been leaked reports Ars Technica (

According to the claims made, the unnamed trader was interested in the security aspects of the exchange given the hype surrounding it upon its launch. To test for its fit, the trader supposedly created a fake account and used tools accessible via the Chrome browser. With the simplicity of the tools used, the trader was shocked to see that DX.Exchange was providing his browser with data belonging to other users – which should naturally be kept in private.

“I have about 100 collected [authentication] tokens over 30 minutes […] If you wanted to criminalize this, it would be super easy,” notes the trader.

As per the claims made, the tokens are based on JSON Web tokens, and to his surprise, in-depth information such as full names and email addresses of DX.Exchange users’ can be accessed. Furthermore, given that a user does not manually log out of his or her account, then any one can access it.

The trader then tried to see if any other ways can be found to access one’s account, and astonishingly, he was able to “permanently compromise” one’s account – implying that anyone can easily get into said user’s account even if they are signed in or logged out.

The Worse is Yet to Come

It seems like the worse is yet to come. In addition to user information leakage, it seems like said leakage can compromise the entire site, as some of the information belong to DX.Exchange’s very employees.

This means any hacker can easily gain access everything housed within the exchange. The trader explained the following to Ars Technica:

“I got tokens from the exchange itself […] You can see from the account’s email address it’s [administrative email domain]. I have pretty good confidence I could do this for a day and get an administrative token and have everything.”

Since the findings were presented to DX themselves, the exchange has since announced that they will be undergoing some maintenance measures to rid the platform of the bugs they’ve been notified of, as seen in the tweet right below:

Investors need to be made aware that the exchange was launched as a “soft launch” and since their acknowledgement of the current problem, the team did mention the following as noticed by Ars Technica as well,

“Due to the high volume of interest in our platform and heavy signups, we discovered some bugs, most are fixed, few are going under examination right now. We are confident to be able to fix them all and finalize our launch in the shortest time.”

Overall, this is just one of several examples that investors should follow by. Many should be wary of the potential problems an exchange may house, especially in their infancy stages, therefore more time should be spent assessing its security among other factors prior to creating an account.

Get Free Email Updates!

*Action Required* Enter Your Email for Trending Crypto News & Market Updates

I will never give away, trade or sell your email address. You can unsubscribe at any time.

[Author Alert] The author’s opinions above are solely based on their own self-conducted research. Assume any and all authors are using, holding, trading and/or buying cryptoassets mentioned as a portion of his or her financial portfolio. Use information at your own risk, do you own research, never invest more than you are willing to lose.

[Domain Disclosure] The crypto-community content sourced, created and published on BitcoinExchangeGuide should never be used or taken as financial investment advice. Under no circumstances does any article represent our recommendation or reflect our direct outlook. We b-e-g of you to do more independent due diligence, take full responsibility for your own decisions and understand trading cryptocurrencies is a very high-risk activity with extremely volatile market changes which can result in significant losses. Editorial Policy \\ Investment Disclaimer

Coin Market Cap Price Change 24 Hour Volume
BTC $162.55B $9,150.1077 0.03% $6.55B
ETH $28.49B $267.3962 -0.62% $1.94B
XRP $18.71B $0.4403 2.63% $1.07B
LTC $8.15B $130.8502 -3.03% $723.25M
BCH $7.48B $419.3130 -2.61% $190.41M
EOS $6.39B $6.9492 -1.13% $699.46M
BNB $4.89B $34.6263 2.86% $369.06M
BSV $4.08B $228.5948 7.40% $207.94M
USDT $3.53B $1.0027 0.05% $5.93B
XLM $2.47B $0.1271 -1.29% $83.52M

Get 3 Free Bitcoin eBooks for Limited Time Only

Receive three exclusive user guides detailing a) What is Bitcoin b) How Cryptocurrency Works and c) Top Crypto Exchanges today plus a bonus report on Blockchain distributed ledger technology plus top news insights.


Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.