In recent years, cryptocurrencies and related blockchain technologies have gained significant attention. Despite their relative novelty, many cyber risks associated with these technologies are not new; they often leverage traditional techniques like social engineering to exploit users. A notable example is the Ronin hack, where over $620 million worth of tokens were stolen from an Ethereum-linked platform for NFT-based video games Axie Infinity. This incident underscores the importance of understanding how blockchain and NFTs work and the associated cybersecurity risks they pose.
In a podcast episode, Dr. Lydia Kostopoulos, senior vice president of emerging tech insights at KnowBe4, provided detailed insights into these technologies. She explained that blockchain is a distributed ledger technology where transactions are recorded across multiple nodes, making it difficult to alter or manipulate data retroactively without consensus from the network participants. Nonfungible tokens (NFTs) represent unique digital assets on the blockchain, creating a market for collectibles like Bored Ape Yacht Club avatars.
However, these technologies introduce new risks. For instance, social engineering remains a significant threat as hackers can trick users into revealing private keys or other sensitive information to gain unauthorized access to their crypto wallets. Dr. Kostopoulos emphasized the importance of securing cold storage wallets and using multi-factor authentication (MFA) to prevent such attacks. Additionally, businesses should be wary of phishing attempts that mimic legitimate platforms.
The popularity of NFTs is driven by several factors: they offer unique ownership and scarcity, which can increase their value. However, whether NFTs will remain a viable market remains an open question as regulatory frameworks for blockchain technology are still evolving. Some suggest that state-backed cryptocurrencies and blockchain voting systems may soon become a reality.
The podcast also covered the broader implications of these technologies, including potential threats such as ransomware, malware, and spyware targeting crypto users. Businesses and individuals need to remain vigilant and adopt best practices to protect their assets.