Chainlink VRF vulnerability thwarted by white hat hackers with $300K reward

2023-11-15 14:15

Decentralized oracle network Chainlink (LINK) paid a $300,000 bounty to white hat hackers Zach Obront and Or Cyngiser (Trust), who uncovered a critical bug that could have skewed its Verifiable Random Function (VRF).

The bug

VRF is a random number generator (RNG) that allows smart contracts to access random values without compromising security.

The product is used by several crypto projects, including Axie Infinity, PancakeSwap, and Aavegotchi, to protect their smart contract with tamper-proof randomness that cannot be manipulated and ensure verifiable outcomes using cryptographic proofs.

Last year, Trust and Obront submitted a report on how a malicious VRF subscription owner could have prevented users from getting this neutral randomness roll by blocking and rerolling randomness until they received a desired value.

According to the Chainlink team, this bug was categorized as a critical-impact smart contract vulnerability, adding that:

“While it could compromise Chainlink VRF’s intended use of providing transparently verifiable tamper-resistant onchain randomness, the exploitable scenario required a number of specific conditions to be met and would be detectable onchain. Most notably, the subscription owner—a role typically controlled by the team behind the dApp using VRF—must be malicious or compromised.”

Following the incident, Chainlink implemented a security feature to prevent malicious VRF owners from exploiting the issue.

Chainlink enjoying institutional interest

Chainlink’s Cross-Chain Interoperability Protocol (CCIP) technology has seen an increase in adoption from adoption from major traditional institutions.

The global financial messaging network Swift used the technology in a tokenization experiment that involved the transfer of tokens across multiple blockchains in August. South Korean gaming giant also used it to power an interoperable Web3 gaming ecosystem in October.

Also, Hong Kong authorities adopted it for value exchange in its Central Bank Digital Currency (CBDC) trials.

As a result, Chainlink’s native LINK token and Grayscale’s Chainlink Trust (GLNK), an institutional investment vehicle, have seen their value surge to new highs.

The post Chainlink VRF vulnerability thwarted by white hat hackers with $300K reward appeared first on CryptoSlate.

Similar to Notcoin - TapSwap on Solana Airdrops In 2024

origin »

White Standard (WSD) на Currencies.ru

$ 0.6235 (-2.19%)

Объем 24H $0

Изменеия 24h: -30.43 %, 7d: -37.65 %

Cегодня L: $0.6235 - H: $0.6235

Капитализация $273.951k Rank 999999

Доступно / Всего 439.402k WSD

hat hackers chainlink white vrf uncovered critical

225 +

Источник: cryptoslate.com

hat hackers → Результатов: 56

Is it safe to contact white hat hackers to restore your lost Bitcoin?

A BBC article reports that white hat hackers helped a Bitcoin early adopter access her locked wallet. The post Is it safe to contact white hat hackers to restore your lost Bitcoin? appeared first on CryptoSlate.

2022-2-12 19:25	#scams
hat hackers bitcoin white lost restore your

270 +

Grey Hat Hacker Agrees To Return 80% Of Funds Stolen In Multichain Exploit

Cross-chain DeFi platform Multichain has been the latest in what is now a long line of DeFi protocols being exploited. This time around, the attackers were able to steal user funds from the platform by gaining access to accounts that haven’t revoked access to the platform.

2022-1-21 23:30
platform access multichain funds defi gaining user

247 +

Analyzing Polygon's 'critical network vulnerability,' recent developments and wins

When's the best time to talk about a disaster? After it's over, of course. This was Polygon's policy as it attempted to wrangle with a vulnerability that two white hat hackers had reported. White as The post Analyzing Polygon's 'critical network vulnerability,' recent developments and wins appeared first on AMBCrypto.

2021-12-30 19:00	News
vulnerability polygon analyzing white wins recent critical

252 +

Incentivized Cybersecurity Network Hats Finance Will Now Incentive Rare And Exclusive NFTs for Their Participants

Hacking, like many other things, is double-sided. What most people are aware of is the group of ‘black and grey hat’ hackers who use their skills to make a profit for themselves and have other people suffer in the process.

2021-9-20 16:30	NFT
people black themselves group suffer process grey

181 +

Hats Protocol Raises $3.5 Million for DeFi Incentivized Cybersecurity Network

Security has always been a recurring challenge faced by DeFi protocols. Over tens of exploits, leading to the loss of several millions of dollars, have occurred since the start of 2021 as black hat hackers keep taking advantage of vulnerabilities on these protocols.

2021-8-31 23:50	Crypto Cable
protocols defi occurred loss several start dollars

237 +

'Mr. White Hat' shares private key for remaining $141M in stolen Poly Network funds

The Poly Network hacker, or hackers, have returned the final piece of the $610 million they had stolen from the DeFi network nearly two weeks ago. Via a blog post on Monday, Poly Network confirmed The post 'Mr.

2021-8-24 09:11	DeFi
network poly stolen defi had 610 million

338 +

Immunefi partners with Binance Smart Chain on bug bounties to secure BSC projects

Binance Smart chain and Immunefi are partnering to reward white hat hackers who discover vulnerabilities in BSC projects.

2021-7-10 19:00	DeFi
bsc projects immunefi chain smart binance reward

290 +

Balancer Labs launches bug bounty program worth $2 million

Non-custodian portfolio manager Balancer Labs has launched a bounty program with a price money of 1,000 ETH, valued at $2 million. Balancer Labs added that it hopes the price will serve as a strong incentive to white hat hackers to search for and report bugs within the Balancer V2 Vault architecture, which will be open […] The post Balancer Labs launches bug bounty program worth $2 million appeared first on Invezz.

2021-4-21 15:44	Cryptocurrency
balancer labs million program bounty price worth

253 +

DeFi aggregator raided by five hackers on launch day

Four malicious hackers and one white hat went to town on ForceDAO during its launch day.

2021-4-6 08:57
day hackers launch white hat one malicious

171 +

First Real DeFi Product from Grey Hat Hackers

Continue reading at Coinspeaker

2021-1-30 19:20
continue reading coinspeaker hackers hat defi real

149 +

Hackers Unveil the First Real DeFi Product

On January 19, 2021, the community of cybersecurity firm Hacken launched the First Grey Hats Ideas Competition offering a massive $45,000 prize pool. Subsequently, on January 28, the First Grey Hat Hackers Ideas Competition website was hacked by hackers who left a rather cheeky message for the community. In what can only be dubbed aRead More

2021-1-30 22:02
hackers ideas community competition january grey website

240 +

The First DeFi Product From Hackers Gets an Unorthodox Debut In Hackathon

Community members of the cybersecurity company Hacken recently launched the First Grey Hat Hackers Ideas Competition. The competition website itself was later hacked. After the hack, those behind the breach used their access to leave a message announcing a new DeFi project along with more information for the Hackathon’s organizers.

2021-1-30 21:34
hackathon hackers competition defi access used breach

178 +

The First Grey Hat Hackers Hackathon Gets Hacked, Hacker Presents DeFi Solution to Curb Money Laundering on DEXs

Hacken, a prominent cybersecurity, blockchain and cryptocurrency community is organizing the First Grey Hat Hackers Idea Competition where hackers and computer enthusiasts can submit their ideas to detect and counter vulnerabilities in crypto and DeFi projects.

2021-1-30 21:19	Company News
hackers defi grey hat computer enthusiasts competition

287 +

Hacken Community Launched First Grey Hat Hackers Competition to Fight Cyber Crime

Continue reading at Coinspeaker

2021-1-24 19:13
crime cyber continue reading coinspeaker fight launched

77 +

Ethereum Developer Challenges Hackers to Break ETH2 Testnets; Collect $10k Reward

Danny Ryan, one of the core developers of the Ethereum developer community, has challenged white hat hackers to hack into a pair of ETH2 testnets. Ethereum's most significant upgrade since its inception where the Ethereum mainnet will transition from Proof-of-Work (PoW) based mining consensus to Proof-of-Stake (PoS) and has been dubbed Ethereum 2.0. The transition […]

2020-7-22 23:13	Ethereum (ETH)
ethereum developer testnets eth2 hackers transition inception

443 +

White Hat Hackers Reveal New Scam Scheme: Insights at BlockShow Asia

BlockShow Asia 2019, an international blockchain event powered by Cointelegraph, is taking place at Singapore’s iconic Marina Bay Sands from Nov. 14 to 15.

2019-10-22 15:51	News
asia blockshow iconic marina singapore taking nov

172 +

Firm Accused of Touting ‘Snake Oil Crypto’ Sues Conference Organizers

A crypto firm heckled at the Black Hat hackers’ conference is suing the event organizers for failing to protect it from backlash

2019-8-27 14:18	#twitter
conference organizers firm crypto failing event suing

173 +

Security firm releases flawed blockchain into the wild to help educate hackers

Despite their supposed security, there are still many exploitable vulnerabilities that can compromise a blockchain. But one security firm thinks it can fix that, and it believes the key to developing more secure blockchains is to start with a really insecure one.

2019-7-26 15:38	hard fork
blockchain security firm one kudelski vulnerable deliberately

160 +

White Hat Hackers Earn $32,000 for Finding Crypto Security Exploits in Last Two Months

White hat hackers reportedly earned over $32,000 in bounties for finding security gaps in blockchain- and crypto-related projects in the last two months

2019-5-21 22:46	security
security white two months finding hat hackers

146 +

White Hat Hackers Profit Big Off The Blockchain Industry, Fixing Flaws For Popular Platforms

Hackers Are Making A Big Profit Off The Crypto Industry, Fixing Bugs In Popular Platforms Hackers have been paid over $32,000 for their exposure of vulnerabilities in crypto platforms since March 28th.

2019-5-21 22:15	cybersecurity
platforms hackers popular fixing industry off big

115 +

Hackers made $32K in 7 weeks by fixing bugs in cryptocurrency projects

In the past seven weeks, white hat hackers earned at least $32,150 by fixing security flaws in popular cryptocurrency and blockchain platforms like TRON, Brave, EOS and Coinbase. According to data reviewed by Hard Fork, 15 blockchain-related firms have paid rewards to security researchers between March 28 and May 16, split across 30 publicly-released bug reports.

2019-5-20 18:21	Insider
cryptocurrency security brave hackers reports rewards weeks

195 +

CoolWallet S Review: An ‘Everyday’ Wallet for Crypto?

The CoolWallet S, made by CoolBit X, combines hot and cold storage solutions, blending the mobility afforded by software wallets with the enhanced security features offered by hardware wallets.

2019-4-4 00:05
your coolwallet wallet security device through card

873 +

Security researchers found over 40 bugs in blockchain platforms in 30 days

White hat hackers have found more than 40 bugs in blockchain and cryptocurrency platforms in the past 30 days, according to an investigation by Hard Fork. There is a silver lining though: none of the vulnerabilities appear to be particularly serious at first glance.

2019-3-14 19:17	security
blockchain platforms cryptocurrency one found vulnerability bugs

187 +

EOS Has Even More Vulnerabilities Than First Thought, Per HackerOne Blockchain Researchers

Blockchain researchers continue to find critical vulnerabilities in blockchain project EOS. The company behind EOS, Block. one, has already handed out $50,750 worth of bug bounties in the past five weeks, including five bounties labeled as “critical vulnerabilities”.

2019-2-6 23:47	News
blockchain vulnerabilities eos five researchers bounties block

203 +

How White Hat hackers can help 'fix' crypto

One of the crypto asset markets’ most pressing issues is the lack of secure infrastructure. Until this issue is adequately addressed, it will remain difficult for cryptographic assets to reach the same status with investors as traditional 'established' financial securities

2019-1-31 21:00	BNC insights
crypto assets cryptographic remain difficult reach status

160 +

How Blockchain Companies Paying Out $878,000 to White Hat Hackers in 2018 is a Big Deal

2018 was a good year for white hat hackers. These individuals and developers earned around $878,000 from crypto bug bounties during this year. The information was released by TheNextWeb on December 30.

2019-1-1 23:48	News
hackers 2018 year hat white blockchain companies

168 +

Crypto Project Bug Bounties Brought In Nearly $900,000 For White Hat Hackers In 2018

Bug Bounties Brought In Nearly $900,000 For White Hat Hackers In 2018 Hacking is one of the biggest issues that plagues the cryptocurrency world, but there have been many other opportunities for cybercriminals to use their knowledge for the good of the industry.

2018-12-31 20:13	News
hackers bug bounties 2018 hat white brought

165 +

Nearly $900K Paid Out In Crypto Bug Bounties On HackerOne In 2018

New statistics from HackerOne reveal that the platform handled $878,504 in crypto bug bounty rewards over the course of 2018. HackerOne is a major platform that allows white hat hackers to report security vulnerabilities and receive financial rewards in return.

2019-1-1 20:01	Cryptocurrency News
hackerone bug 2018 crypto nearly rewards 900k

190 +

Bounties and Responsible Disclosure Bolstered Crypto Infrastructure This Year

Cryptocurrency transfers work because of the software developed by programmers like Satoshi Nakamoto and many other innovators along the way. As with all software, however, blockchain protocols are not perfect, and over the last decade black and white hat hackers have revealed many bugs.

2018-12-31 02:00
bounties many software blockchain year crypto bolstered

176 +

Crypto Startups Forked Out $878,000 To White Hats In 2018

Bitcoin may have been dubbed the “world’s most secure transaction settlement layer” by Anthony Pompliano, but the industry surrounding the protocol may not be all too secure. Case in point, crypto startups have forked out over $878,000 in bounty to white hat hackers in 2018, specifically for solving bugs that slipped under the radar.

2018-12-31 01:00	Crypto
crypto 2018 white startups forked out 878

168 +

White Hat Hackers Earned $878,000 from Crypto Bug Bounties in 2018, Data Shows

This year $878,000 have been reportedly awarded to hackers by blockchain companies on vulnerability disclosure platform HackerOne

2018-12-31 17:04	Hacks
hackers 878 awarded blockchain reportedly vulnerability platform

146 +

ARK blockchain ready for vulnerability tests from security platform Bugcrowd

CryptoNinjas Blockchain ecosystem ARK today announced the obtainment of security and penetration testing services from Bugcrowd, a leading crowdsourced security platform. Highly skilled and trusted white hat hackers from all over the world will try to.

2018-12-11 06:10
security platform bugcrowd ark blockchain ready tests

163 +

AntiHACK.me ICO

AntiHACK.me has been created to fill the gap between those who are seeking for White Hat Hackers’ services and the hackers themselves. By sourcing for White Hat Hackers in a decentralized manner and securing it on the blockchain, we are able to offer services transparently, preserving the hacker’s anonymity while ensuring that transactions are completed fairly.

2018-10-25 04:33
hackers services white antihack hat offer blockchain

216 +

Exclusive Interview: Hacken and TTC Partnership Makes DApps Easier Than Ever Before

TTC Protocol made a partnership with HackenProof on September 17, 2018, creating a public bug bounty to secure TTCs’ blockchain with the most extensive network of white hat hackers continuously stress testing the system.

2018-10-9 11:00
blockchain partnership ttc hacken responsible securing estonia

185 +

White Hat Hacker Exposes Critical Vulnerability in Augur Platform

According to a report published on The Next Web, the decentralized betting platform Augur was found to possess a critical bug, which could potentially allow cyber hackers to provide wrong information to the users and rig the mechanism of prediction markets website.

2018-8-10 22:00
augur critical platform hackers white bug allow

132 +

Blockchain Auditing and the Industry’s "Knowledge Gap"

The advent of smart contracts has long drawn interest for its potential to revolutionize business agreements. There’s just one problem, and it’s one that has affected many spheres of the cryptocurrency space: a knowledge gap.

2018-7-13 19:12	Privacy & security
smart sawhney hosho contracts gap knowledge auditing

422 +

дальше еще 7 новостей →

Партнеры Currencies.ru

Analogue Notcoin - TapSwap

Реклама на Currencies.ru

Самое свежее на Currencies.ru

Bitcoin dominance falls: Time to stock up altcoins like LINK now?

Bitcoin dominance and a technical indicator suggested it might be time for swing traders to look at altcoins. Relative strength against BTC is an important factor alongside long-term support zoThe post Bitcoin dominance falls: Time to stock up altcoins like LINK now? appeared first on AMBCrypto.

Post-halving Bitcoin, Chainlink lead the chatter - What are you missing?

BTC has over 138 million social activities, while LINK has over 50 million. Consecutive price trends have contributed to the increased social activity. Recent data indicates that Bitcoin [BTThe post Post-halving Bitcoin, Chainlink lead the chatter - What are you missing? appeared first on AMBCrypto.

Bitcoin halving aftermath: LTC, LINK emerge as investor favorites

Crypto investment products saw outflows worth $206 million. LTC and LINK outperformed Bitcoin because of the halving and interest rate speculation. A total of $206 million flowed out of crypThe post Bitcoin halving aftermath: LTC, LINK emerge as investor favorites appeared first on AMBCrypto.

Can LINK rally to a new ATH on the back of Bitcoin's halving?

Bullish sentiment around Chainlink rose on the back of Bitcoin's halving Buying pressure was high, hinting at a sustained price hike Chainlink [LINK] recorded a solid comeback over the lThe post Can LINK rally to a new ATH on the back of Bitcoin's halving? appeared first on AMBCrypto.

Chainlink-Ethereum integration - Brace yourself for bad weather?

LINK gained traction after the project disclosed the update with ETH cross-chain transfers. The price of the token might drop below $14 in the short term. The number of new Chainlink [LINKThe post Chainlink-Ethereum integration - Brace yourself for bad weather? appeared first on AMBCrypto.

Chainlink debuts Transporter app, targets hyper-security for cross-chain transactions

Chainlink introduces Transporter app, aiming to streamline cross-chain token transfers with top-tier security and a user-friendly interface.

ChatGPT и Google Gemini предложили свою версию инвестиционного криптопортфеля для защиты от халвинга

Журналисты изданий Finbold и Bits.media предложили чат-ботам с элементами искусственного интеллекта сформировать вариант эффективного, но ограниченного по сумме криптопортфеля в преддверии халвинга сети Биткоина.

2023-11-15 14:15

hat hackers → Результатов: 56

2022-2-12 19:25

2022-1-21 23:30

2021-12-30 19:00

2021-9-20 16:30

2021-8-31 23:50

2021-8-24 09:11

2021-7-10 19:00

2021-4-21 15:44

2021-4-6 08:57

2021-1-30 19:20

2021-1-30 22:02

2021-1-30 21:34

2021-1-30 21:19

2021-1-24 19:13

2020-7-22 23:13

2019-10-22 15:51

2019-8-27 14:18

2019-7-26 15:38

2019-5-21 22:46

2019-5-21 22:15

2019-5-20 18:21

2019-4-4 00:05

2019-3-14 19:17

2019-2-6 23:47

2019-1-31 21:00

2019-1-1 23:48

2018-12-31 20:13

2019-1-1 20:01

2018-12-31 02:00

2018-12-31 01:00

2018-12-31 17:04

2018-12-11 06:10

2018-10-25 04:33

2018-10-9 11:00

2018-8-10 22:00

2018-7-13 19:12

Партнеры Currencies.ru

Реклама на Currencies.ru

Самое свежее на Currencies.ru

Add news: propose for publication, Submit ICO