LlamaRisk: Circle and Tether's vulnerability bounty program is far from enough

Golden Finance reported that Circle and Tether are being questioned by DeFi risk management company LlamaRisk because its vulnerability bounty program is "seriously insufficient" and the maximum amount does not even exceed $10,000. LlamaRisk released a report on September 1, evaluating the vulnerability bounty program for crypto assets listed in the AaveV3 protocol. The report found that among the assets supplied by Aave, there are 33 assets (worth $19.7 billion) of the bug bounty programs that are considered "sufficient". But there are 10 other assets (worth $19.2 billion) that either have no loophole bounty programs or are seriously insufficient. LlamaRisk noted that despite Circle managing $70 billion in assets, its vulnerability bounty was "seriously under-requisite" at just $5,000. Tether, which manages $160 billion in assets, has a loophole bounty of only $10,000. Other assets with low vulnerability bounty amounts include BitGo wrapped bitcoin, Gnosis, and Ripple; while Etherfi, Monerium, PayPal and Agora are marked as having no active vulnerability bounty programs at all.