HashDit Raises Centralization Concerns Regarding Binance AlphaBot

Web3 security firm HashDit has issued an alert about AlphaBot, a widely popular bot linked to Binance’s Alpha Points system. The bot facilitates trading on the Binance Router to increase trading volume and earn users more points. However, HashDit highlights a potential centralization risk due to AlphaBot’s reliance on ‘swapRoleMap’ roles, which could expose users to security breaches if compromised. The bot’s critical function, ‘swapTo’, uses flexible fee calculations without limits, making it vulnerable to exploitation as this function can be invoked externally without any cost restrictions and allows for indefinitely setting allowances and activeTimeStampMap.