With the hacks and Bitcoin for ransome, who's to be blamed?

[Hamphser]

It's a complex issue with no simple answer. There should be a robust digital identity systems instead of everyone uploading photos of their passports to every website that asks them to. And governments should be adopting privacy-protecting laws. And companies should be punished for these customer data breaches, so that they would be more incentivized to invest in their security. Also, companies who illegaly obtain hacked data and use it should also face consequences.

But the question is, how they would know it? If ever companies are accepting or buying those hacked data? For sure it would be  done on a system where it cant really be known nor be seen which is just common

sense and thats why they are really that confident when it comes to this manner.Yes, we could actually blame but what action we would able to take against them if something cant really be traced up and
cant really be known due to that decentralized and anonymity behavior?

As an individual then we should really be mindful on completing on whats been asked or trying out to comply even if its not necessary or mind off if the company is really
worth off for you to give those informations.

[2stout]

I try to keep it simple and look at it than rather who is to be blamed, what is it to be blamed?  Examining from the what perspective, the common thread is greed- whether from hackers (big hit/heist), users (quick $$$/moon), exchanges (more users, more shitcoins & more shitcoin promotions=more fees, more revenue, more crypto to lend out to take more risk to, you guessed it, generate more revenue).  Most other issues revolve around greed, for ex., why didn't the exchange have or practice better security; why do some of these companies have shitty network security; why did user not take better precautions; why didn't user educate themselves a little more; etc.  The next would be ignorance whether willfully or truly, examples- being too trusting to complete strangers in the crypto world, esp with no vetting; little initiative in learning about at least the basics. I could keep on going but being aware of at least these 2 and issues that revolve around them and entities solving for them would IMHO cut the rate of incidents and successful ones down by about 50% at the least.

[noorman0]

But the question is, how they would know it? If ever companies are accepting or buying those hacked data? For sure it would be  done on a system where it cant really be known nor be seen which is just common

They will only use contact numbers/emails to spam random offers if it is traded with a public service/entity for marketing purposes.

More sensitive data is generally traded to individual buyers and uses that to start blackmailing owners or as material for verifying financial services. Furthermore, they can do anything in the name of another person's identity including financing illegal activities.

[darkv0rt3x]

About the specific question of the OP, of course Bitcoin cannot be blamed in my opinion. This is the same when your pitbull attacks another dog or a person. This is not dog's fault. This is th eowner's fault who knows he owns a potentialy dangerous dog, yet fails to take proper care of his dog, such as training his social skills, release his energy in a daily basis, walk him with a leash, etc. Or in another comparison, this would be like to blame a gun itself for a shooting. The gun doesn't shoot by itself (unless some malfunction is triggered by some weird event). The owner is to be blamed!

So, I don't think Bitcoin is to be blamed for any hacks, ransoms or such. The person behind the hack and probably the persons who failed to provide security that allowed the hack should be blamed instead!

[jrrsparkles]

Obviously the agency who is responsible to keep the data safe, including bitcoin into this story is irrelevant because ransom is existing here before the invention of Bitcoin so the medium has changed. However even if the funds transferred to the hacker via Bitcoin network then it can be traced so the hacker can't convert it into Fiat in any legal form.

[davis196]

Recently, there have been series of data and financial hack by hackers from exchanges and kyc verification firms entrusted with customers data, information and funds. The most recent is that of the 1billion Chinese data hack and hacker demanding for 10 btc as ransome.
I strongly believe that information and data of citizens are to be treated with utmost care because it's a private affairs so must be accorded due respect but when the third party entrusted with such information can't show any credibility and reliable feature in playing their role what happens?
It is unfortunate that data information of clients can't be protected with utmost care as a result of breached security measures.
Now I ask though it sounds funny but to be realistic, this is the reality. Who is to be blamed for funds hacks, data leak/hack? Is it the government, security agencies or the kyc firms or the sole organization that demands all customers must under a kyc verification process. Your genuine opinions are all welcomed.

https://www.washingtonpost.com/business/2022/07/06/china-hack-police/

The Chinese government requires sensitive data from the citizens, but it doesn't provide a high enough level of security, in order to protect this data. All the private companies are required by the law to impose KYC verification. I'm sure that many private companies have higher standards about data security, because in case of a hack/data leak, their reputation will be destroyed and their business will do downhill.
Anyway, playing the blame game is meaningless at this point. Who is going to sue the Chinese government for not taking care of private data, that belongs to it's own citizens? China is still a totalitarian country.
Bitcoin is irrelevant to this topic. The hacker could have asked a Monero payment for the data.

[Baofeng]

Now I ask though it sounds funny but to be realistic, this is the reality. Who is to be blamed for funds hacks, data leak/hack? Is it the government, security agencies or the kyc firms or the sole organization that demands all customers must under a kyc verification process. Your genuine opinions are all welcomed.

I guess you can't really pinpoint as who is to blame here, this government agencies should be working hand in hand with other agencies too. So there is no single point of entry for the hackers, maybe other government have the same exact copy of those leaked Chinese documents. For the government though, this is going to be a good lesson for them, specially how big and secretive and authoritarian government the Chinese is. For sure some heads are going to roll on this one as this has been reported in the public already and it makes the government inept and incompetent.

[dansus021]

Data leakage from China is unavoidable, even if it is considered a normal action for the government itself to allow access to personal data where it is permitted. I think the government here doesn't care about the safety of its citizens.

Back to the public access that is so easy to provide data without ever thinking that what they provide, is an action that drags the data into the publication area. Because the police give free space to be traded, the pretas proudly explain what is sold to the public on the basis of ignorance of people who provide data for free. Based on the article you shared, the victims still don't realize that their data is being sold.

and after that the leakage data will still be end up on internet forever just like viral video which is so bad.
hack on bitcoin or mostly happen on DeFi nowadays you can see on https://rekt.news/ is crazy amount of money and this keep happening in every year. i know that most platform will die because of hack like MTGox did or try to survive.

but in the positive side so many hacker attack will be a tools to us learn against future attack

[Eugene Buck]

This is a complex situation and I think awareness and upgrading our knowledge technically has become much more important. The hackers will not stop and bitcoin not being centralised becomes our responsibility to protect our wealth.

[Fernando Gomez]

In these situations there is no one to put blame on. I believe we should be alert and be able to identify such traps.

[TimeTeller]

This is a complex situation and I think awareness and upgrading our knowledge technically has become much more important. The hackers will not stop and bitcoin not being centralised becomes our responsibility to protect our wealth.

That's the job of hackers, always finding vulnerabilities to gain something for themselves.
So it is your responsibility as a user to take care of your funds. Third party sites has only limitations when it comes to security.
Be aware of what you are doing over the internet because you may be putting yourself at risk without knowing it.
No one will take care of your funds but yourself. As much as possible, update your security protocols more often.

[ChrisPop]

This is a delicate situation and a discussion which can go very in-depth, but here is my thinking process regarding this matter:

- KYC is required so that criminal activities are contained  and that is a good thing.
- However the problem is that regulation should be much harder in respect to data privacy and protection. Firms who are required to collect personal information like IDs and proof of address documents should not be allowed to function unless they have proven they have the capacity to secure them properly.

In the Chinese case, the fault is borne by the government. It is scandalous that such a high-level institution was not able to keep the data safe from hackers.

[Dunamisx]

Recently, there have been series of data and financial hack by hackers from exchanges and kyc verification firms entrusted with customers data, information and funds

I will attribute the users as the major causes to this menace because if a wall never crack there will not be a space for lizard to crawl in, to an extent it has been researched that users gives way in for an attack on their asset because the failed to know how to protect themselves from the intrusion of an external body against their asset, some uses centralized exchanges, visit website indescriminately, download unsolicited stuffs online, reveal their keys and lots more which shouldn't be handled the way they did, some may be out of negligence while some lacks the knowledge to how they can keep safe.

[Michael White]

Now I ask though it sounds funny but to be realistic, this is the reality. Who is to be blamed for funds hacks, data leak/hack? Is it the government, security agencies or the kyc firms or the sole organization that demands all customers must under a kyc verification process. Your genuine opinions are all welcomed.

I guess you can't really pinpoint as who is to blame here, this government agencies should be working hand in hand with other agencies too. So there is no single point of entry for the hackers, maybe other government have the same exact copy of those leaked Chinese documents. For the government though, this is going to be a good lesson for them, specially how big and secretive and authoritarian government the Chinese is. For sure some heads are going to roll on this one as this has been reported in the public already and it makes the government inept and incompetent.

I totally agree! Who knows. No one can be trusted when it comes to money.

[CryptSafe]

Prevention is better than cure Perhaps it is best to try to reduce your access to the Internet and provide as little data as possible.
We can first blame users for providing their data to neglected third parties, and then to the state for not protecting customer data, and finally to the platforms for being interested in profit in exchange for privacy.
But do not forget that any system can be hacked, so if you want to maintain privacy, do not share your data.

It is rarely impossible to avoid the internet this dispensation. Talking of data access, most people got themselves engaged in activities that requires such steps and process so therefore they would need to undergo the process to have access to their funds. You cannot for the fact about data breach ignore your funds for that matter so you would need to undergo the process so as to have access to it having it in mind that you are not the only one undergoing such process so therefore you would be at ease doing your task fulfilling the requirements. i just think all these data breach is as a result of negligence and carelessness of the organisations entrusted with the data of individuals.
like you have said that any system could be hacked. That is certainly sure because it just can happen t anytime but the custodians of data should be able to protect the data of their clients with utmost care and trust.