2026-01-12 00:27:16

The core issue here is: if the money has already been credited and a genuine KYC user logs in and requests assets from the platform, should the platform give the money or not, and to whom?

The scenario is particularly heartbreaking. Suppose you buy someone else's KYC identity information, and the other party withdraws a refund from the platform, then you log into a major exchange using this identity and find your assets have mysteriously disappeared. At this point, you ask the platform why the money was transferred away, how would they respond?

In simple terms, this involves a conflict of rights among three parties: the genuine KYC holder, the actual recipient of the funds, and the platform itself. Current account security policies and identity verification mechanisms often lack a clear framework for handling such complex scenarios. Platforms usually freeze assets citing "identity mismatch" or "illegal operation," but who is the true victim and who should bear responsibility remains a blurry line.

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

21 Likes

Reward
21
9
Repost
Share

Comment

0/400

DegenRecoveryGroup

· 2h ago

Really incredible, this is the most magical deadlock in Web3... no one can afford to lose.

View OriginalReply0

SocialFiQueen

· 6h ago

Oh my, this is really a bad ending... Everyone can default, everyone is a victim, and in the end, the platform just freezes everything—perfect.

View OriginalReply0

SilentObserver

· 01-13 21:45

This is a dead loop, the platform is always the winner, and no one can do anything about it. --- A typical Schrödinger's money, it belongs to you and it doesn't belong to you at the same time. --- Honestly, the current KYC system is a joke; it can't prevent this kind of thing at all. --- Three parties passing the buck, and in the end, it's not the retail investors who suffer, the platform has long since shifted the risk. --- Buying and selling KYC information is already illegal; who can you blame? --- In this situation, the platform will definitely choose to freeze assets to protect itself, regardless of your life or death. --- Wait, isn't the actual KYC holder also losing out? Double harm.

View OriginalReply0

AlphaWhisperer

· 01-12 00:56

That's why I say that exchange KYC is a complete joke; whenever something really happens, you have to take the blame yourself.

View OriginalReply0

RugResistant

· 01-12 00:54

ngl this is a massive vulnerability waiting to explode... platforms have zero framework for this three-way mess and they know it. someone's definitely getting rekt here 💀

Reply0

TokenAlchemist

· 01-12 00:49

ngl this is just the classic MEV extraction problem but for identity vectors... platforms literally have zero incentive to resolve this cleanly when they can just freeze assets and call it "protocol security" lmao

Reply0

MoonMathMagic

· 01-12 00:47

Yeah, this is indeed a mess. The platform's best excuse for passing the buck.

View OriginalReply0

ReverseTrendSister

· 01-12 00:41

This is a typical platform passing the buck scene, playing mahjong with triangular debts... nobody can afford to lose.

View OriginalReply0

rekt_but_vibing

· 01-12 00:29

Damn, this is an unsolvable deadlock... The platform wins first, the genuine holders also win, and the guy using a fake identity explodes directly. Anyone can tell a story.

View OriginalReply0