Highlights:
- Coinbase launched a program to fix smart contract flaws and protect its Base network infrastructure.
- Base adoption by JPMorgan and Shopify increases the need for stronger on-chain security and faster payment systems.
- Coinbase has partnered with Cantina to review smart contract risks and reward high-impact security research findings.
Coinbase has introduced a $5 million security program focused on its on-chain products and Base network smart contracts. The program runs on Cantina, a platform that allows security researchers to report technical vulnerabilities. Coinbase will assess each report based on how easily the issue can be reproduced and how serious the impact may be. The idea is to identify and correct loopholes in the system before they prove dangerous. The research will take a methodical review route with well-established Web3 security experts involved.
A landmark moment in onchain security.@Coinbase has launched a $5M bug bounty on Cantina, a new program focusing exclusively on all its onchain products and @base’s smart contracts. It sets a new standard for securing Web3 organizations at scale. Details below. pic.twitter.com/otO5QVTtH4
— Cantina 🪐 (@cantinaxyz) July 8, 2025
This project is an expansion of the previous partnerships between Coinbase and Cantina. The previous activities featured the auditing of essential components like Verified Pools, Nitro Validators, WebAuthn modules, and ERC-6492 validation logic. These reviews helped strengthen key parts of Coinbase’s infrastructure. Now, the new program expands the scope to include more smart contracts and other on-chain systems.
The $5 million bug bounty program ranks among the largest in Web3. Coinbase expects this to attract high-level researchers who can help improve its blockchain security. The company has made this move as its Base network gains more use among institutions and payment platforms. As adoption grows, Coinbase continues to focus on system safety.
Institutional Adoption of Base Drives Need for Stronger Protection
Base has become a preferred network for major institutions and global businesses. JPMorgan recently selected Base for its new JPMD digital deposit token. This token allows institutional clients to move funds securely and quickly at any time. The base network has a semi-decentralized structure and governance that fits large organizations.
JPMD is issued through a permissioned system. The system is a structure that is fully backed with U.S. dollars and fulfills the demand of secure payment tools by institutions. Coinbase executives added that Base would allow enterprise users to more reliably and quickly make payments. Transfers on the chain can be completed in a few seconds, and this is evidently an advantage compared to conventional systems.
Base was also adopted by Shopify to enable USDC payments in 34 countries. The integration employs Shopify Payments and Shop Pay, allowing merchants to accept stablecoins directly. Coinbase implemented the Commerce Payment Protocol on Base to make this possible. The system has escrow capabilities in terms of authorizations, capture, and refund. It also prevents modifications to requests for payments with cryptographic safeguards.
Bug Bounty Program Extends Coinbase’s Security Strategy
Coinbase increased its security focus following a breach earlier this year. Instead of paying a ransom, the company created a $20 million reward fund to identify the attackers. Since then, Coinbase has made several internal changes to improve its defenses. The new bug bounty adds another layer of protection.
Cantina continues to support Coinbase through its expert-led triage system. It combines automated tools and structured reviews to reduce low-quality submissions. Cantina also addressed the significant Uniswap V4 protocol bounty.
Best Crypto Exchange
- Over 90 top cryptos to trade
- Regulated by top-tier entities
- User-friendly trading app
- 30+ million users
eToro is a multi-asset investment platform. The value of your investments may go up or down. Your capital is at risk. Don’t invest unless you’re prepared to lose all the money you invest. This is a high-risk investment, and you should not expect to be protected if something goes wrong.

 
         
                



