Meet the Top 101 in Crypto
News
7 min read

‘Our Industry Is Full of Bad Actors’ — CORE3 Co-Founder Dyma Budorin on Why Crypto Security Still Fails

Published 01 April 2026

Key Takeaways

  • Crypto’s biggest weakness isn’t tools—it’s culture, with projects still prioritizing speed and profit over security and transparency.
  • Many teams treat audits as a marketing checkbox, leaving protocols exposed due to incomplete security practices and poor operational safeguards.
  • Beyond hacks, the real risk in crypto includes a lack of transparency, weak oversight, and economic manipulation like rug pulls and insider activity.

Crypto has spent years talking about security. It still hasn’t solved it.

For Dyma Budorin, co-founder of CORE3, the issue isn’t a lack of tools or talent. It’s something more uncomfortable. It is the industry itself.

In a conversation with CCN’s Giuseppe Fabio Ciccomascolo, Budorin doesn’t sugarcoat it.

He describes a space still shaped by bad actors, weak incentives, and a culture that often prioritizes speed and profit over resilience.

At the center of that tension is a simple question: if the tools to build securely already exist, why do projects keep getting hacked?

Sponsored
Disclosure
Opened in 2018
Promotions
Deposit $100, Get an Extra $300 in GOLD!
Coins
Shiba Inu Bitcoin PAX Gold Ampleforth Ethereum +70
Promotions
Receive up to $100,000 worth of exclusive gifts for newcomers upon registration.
Coins
Bitcoin Ethereum Tether USD Coin Solana +76
Opened in 2017
Promotions
Experience a 1-minute swap on a non-custodial platform.
Coins
Bitcoin Ethereum Tether Build'N'Build USD Coin +217
Show More

“The Industry Is Full of Bad Actors”

Budorin’s entry into security wasn’t driven by opportunity. It was driven by frustration.

“The problem is that our industry is a piece of shit,” he says bluntly. “We have too many scams, frauds… It’s full of bad actors, and nothing is changing.”

That frustration led him to focus on building infrastructure that tries to correct that imbalance—not by reacting after hacks, but by preventing them in the first place.

At CORE3, the goal is straightforward, even if the execution isn’t. Help projects avoid getting hacked, avoid losing money, and operate with stronger security standards from the start.

“We are the good guys who help projects not to be hacked,” Budorin says.

But the company’s role goes beyond just security services. Reputation, he argues, has become part of the product.

If CORE3 is involved with a project, it signals that serious effort has gone into protecting it.

Building a Full-Stack Security Approach

One of the recurring problems in crypto security is fragmentation. Different tools, different vendors, different layers—often loosely connected.

Budorin sees it differently.

“In our case, it’s a bit the opposite,” he explains.

CORE3 operates as part of a broader group that includes:

  • A bug bounty platform (HackenProof).
  • Security services across smart contracts and Web2 infrastructure.
  • Operational security teams.
  • A data platform (CORE3) focused on risk analysis.

Together, the idea is to cover the full lifecycle of risk. From code vulnerabilities to operational failures.

“We can cover almost all the risks of a crypto project,” he says.

But even with that coverage, most of the industry isn’t using these tools properly.

The Real Problem: Security as a Marketing Tool

According to Budorin, one of the biggest misconceptions is that projects ignore security. In reality, many are engaging with it—but only superficially.

“Only 20% of projects that get hacked had some auditor,” he says, pointing to industry data. “The others were out of scope or had no audits.”

Even among those who do audits, the process is often incomplete.

Projects audit:

  • Only a small part of their protocol.
  • Just the token contract.
  • Or worse, update code after the audit and introduce new vulnerabilities.

“They use audits as a marketing tool,” Budorin says. “Which is ridiculous.”

And auditing alone isn’t enough.

“You have to make proper operational security. You need circuit breakers. You need monitoring.”

Without those layers, even well-audited systems remain exposed.

Speed vs Security? “You Shouldn’t Balance It”

Crypto has long struggled with a trade-off between moving fast and building safely.

Budorin rejects the premise entirely.

“You should not balance. Security should be a mindset from day one.”

The problem, he says, is that many teams operate with a completely different mindset. They want to launch quickly, attract users, and push token prices.

“There is a mindset to ship fast… and pump tokens. That’s what it is.”

That culture, more than any technical limitation, is what keeps vulnerabilities alive.

Transparency Is a Bigger Problem Than Security

If security is flawed, transparency might be worse.

Budorin argues that the industry already has the tools to protect itself. What it lacks is openness, especially from centralized players.

“I don’t think security is the biggest problem,” he says. “I think transparency is way bigger.”

He points to centralized exchanges as a key example. There are still major unanswered questions about:

  • Insolvency risks
  • Internal operations
  • Market events like liquidations

“We still don’t know what happened,” he says, referencing major market events. “No public reports, no clear answers.”

And unlike security tools, transparency is not universally desired.

“Not all industry players want this transparency, because they benefit from it.”

Is the Industry Improving? Not Really

Despite better tools and more awareness, Budorin sees worrying trends.

One of them is over-reliance on automation and cost-cutting.

“People are building with AI coding, AI audits… and going live,” he says. “Which is horrible.”

While AI can help identify vulnerabilities, it’s not a replacement for deep, manual security work.

“It can find bugs, but it can also miss a lot.”

At the same time, teams are trying to reduce costs in both development and security—often at the expense of long-term safety.

Regulation: Still Not Moving the Needle

Regulation is often seen as a solution to crypto’s security and transparency issues. But Budorin says its impact is still limited.

In regions like the UAE, licensing frameworks are increasingly enforcing better practices.

In Europe, however, progress is slower.

“MiCA is not very specific… and not fully adopted,” he says.

More importantly, enforcement is still missing.

“Companies will start doing something only when they see the first fines.”

Until then, many are unlikely to change their behavior.

The Bigger Risk: It’s Not Just Security

One of Budorin’s final points reframes the entire discussion. Security, he argues, is only part of the risk landscape.

“You can be fooled in different ways,” he says.

Even perfectly secure systems can still harm users through:

  • Poor token economics.
  • Insider manipulation.
  • Pump-and-dump schemes.
  • Rug pulls.

“It’s not always security that’s the problem.”

That broader definition of risk—technical, financial, and behavioral—is what the industry still struggles to address.

A Culture Problem, Not a Technology Problem

If there’s a single thread running through Budorin’s perspective, it’s this: crypto’s biggest weaknesses aren’t technical.

They’re cultural.

“We don’t care about risk,” he says. “We care about quick money.”

That mindset, he argues, is why serious participants still hesitate to fully enter the space—and why the industry continues to repeat the same mistakes.

Security tools exist. Best practices exist. Even regulatory frameworks are starting to take shape.

What’s missing is the willingness to treat them as essential, not optional.

Until that changes, the cycle is unlikely to break.

Insha Zia

Insha Zia is the News Editor at CCN. Based in Dubai, United Arab Emirates, he ensures the CCN newsroom provides value to readers by educating, informing, and engaging them with accurate and timely coverage.

Before joining CCN, Insha was a Senior Journalist at DailyCoin, where his career in crypto journalism took off. At DailyCoin he garnered ample experience by covering some of the biggest news in the crypto industry, especially in the Cardano ecosystem, and maintain solid relations with KOLs in the industry.

Insha has worked as a ghostwriter and a developer for three years. He has co-authored numerous articles in reputable publications, including Hackernoon, Yahoo Finance, and Nasdaq. He also has experience as a Solidity Developer and a Data Analyst.

Insha’s developer and journalist backgrounds go hand in hand when educating readers on technically complex concepts within the crypto space. He values accuracy, transparency, and delivering valuable insights to his readers.

Insha firmly believes education can propel the mass adoption of the crypto space. He is committed to giving CCN readers a greater understanding of the technology using his technical background.

Insha earned a Bachelor of Science in Computer Systems Engineering at the University of Engineering and Technology, Peshawar, in 2022. His technical foundation includes expertise in quantitative and qualitative research, data analysis, programming languages, and cybersecurity.

His comprehensive skill set enables him to communicate complex concepts to crypto readers with authority and clarity, making his articles both informative and engaging for his audience.

Insha is determined to take CCN to the top of the industry. When he’s not working on his next article or editing, Insha enjoys playing video games, mainly in FPS and MMORPG genres. He also loves playing soccer and has supported Arsenal since he was six.

Giuseppe Ciccomascolo

Giuseppe Ciccomascolo began his career as an investigative journalist in Italy, where he contributed to both local and national newspapers, focusing on various financial sectors.

Upon relocating to London, he worked as an analyst for Fitch's CapitalStructure and later as a Senior Reporter for Alliance News. In 2017, Giuseppe transitioned to covering cryptocurrency-related news, producing documentaries and articles on Bitcoin and other emerging digital currencies. He also played a pivotal role in establishing the academy for a cryptocurrency exchange website. Crypto remained his primary area of interest throughout his tenure as a writer for ThirdFloor.

Related

Survey Icon
Help us improve
1 of 4
Is this your first time here?
What brought you here today?
What are you most interested in?
Would you be interested in:
Thank you icon
Thank you for your feedback!
DMCA.com Protection Status