Investor Sues Winklevoss Twins’ Gemini Crypto Exchange Over Security Breaches

IRA Financial Trust, a platform that allows users to save for retirement in alternative assets like cryptocurrency, is suing cryptocurrency exchange Gemini over an alleged failure to protect its customers from a heist that resulted in the theft of $36 million in crypto. The financial platform partners with Gemini, owned by the Winklevoss twins, Cameron and Tyler, to allow customers to trade and store cryptocurrency.

In February, the IRA suffered a major attack that drained the millions of funds that customers had stored at Gemini. The business was reportedly crushed, calling the police to report a fake crime in someone’s home, when the cyberattack happened. Police showed up at IRA headquarters in South Dakota after false reports of a robbery, while bad actors got away with millions in crypto. At the time, a source close to Gemini told CoinDesk that it has not been hacked and that it makes various security controls available to its partners.

“Gemini was aware of the risks associated with crypto assets,” the IRA complaint states. “In fact, he built his public image around so-called mitigating those risks. But like so much else in the crypto world, the Gemini image is just that: an image. In reality, Gemini discards security when there is a chance of earning more income.


According to the IRA complaint, the problems started when Gemini “strongly lobbied” the company to use the Gemini API (Application Programming Interface) on the web platform so its systems can better handle customer onboarding. This, according to the IRA, had a “fatal flaw” in the form of the master key that would have allowed holders to “bypass” Gemini’s security protections, giving them the ability to “transfer and withdraw crypto assets without obtaining a customer’s second factor authorization”. Gemini provided the IRA with this master key, but the IRA claims it was never told of its “power”, alleging that Gemini casually included it in unsecured and unencrypted emails.

The IRA’s complaint says hackers got their hands on its master key and could have “exploited vulnerabilities in Gemini’s API.” The result was that bad actors “transferred tens of millions of dollars worth of Bitcoin and Ether belonging to hundreds of clients into a single client retirement account and then withdrew all of those assets.”

The IRA goes on to claim that when the attack happened, Gemini failed to freeze customer accounts in a timely manner. Since the IRA was supposedly not given a phone number they could use to contact Gemini quickly, they instead resorted to sending several emails which were met with a slow response time. . (Gemini reportedly didn’t freeze client accounts until nearly two hours after the IRA sent its first email.) The IRA is suing Gemini for damages to be determined at trial. Gemini did not immediately respond to The edge request for comment.

Gemini is not only facing lawsuit from the IRA, but also from the Commodity Futures Trading Commission (CFTC), which has taken legal action against the company for allegedly misrepresenting certain details of its exchange and futures contract. . Last week, Gemini announced that it was laying off 10% of its staff as the cryptocurrency market faces an economic downturn.

We wish to thank the author of this post for this remarkable web content

Investor Sues Winklevoss Twins’ Gemini Crypto Exchange Over Security Breaches

Explore our social media accounts and other related pages