• Login
Crypto Newsmart
No Result
View All Result
  • HOME
  • BITCOIN
  • CRYPTO UPDATES
    • ALTCOIN
    • ETEREUM
    • NFT’s
    • CRYPTO PRICE ANALYSIS
  • LEARN CRYPTO
  • CRYPTO EXCHANGES
  • BLOCKCHAIN
  • MINING
  • SCAM ALERT
  • PRESS RELEASE
  • HOME
  • BITCOIN
  • CRYPTO UPDATES
    • ALTCOIN
    • ETEREUM
    • NFT’s
    • CRYPTO PRICE ANALYSIS
  • LEARN CRYPTO
  • CRYPTO EXCHANGES
  • BLOCKCHAIN
  • MINING
  • SCAM ALERT
  • PRESS RELEASE
No Result
View All Result
Crypto Newsmart
No Result
View All Result

Hacker Scoops Up $2 Million Bounty

in Bitcoin
Reading Time: 3 mins read
Hacker Scoops Up  Million Bounty After Spotting Fatal Flaw In Ethereum Rollup
166
VIEWS
Share on Facebook

A hacker has made off with $2 million in bug bounty after finding an alarming vulnerability with the Ethereum network. This bug could have been very bad if it had been found by black hat hackers who could have exploited the digital asset for billions of dollars worth of ETH. Instead, a ‘grey hat’ hacker popularly known as Saurik informed the Ethereum team of the vulnerability, netting himself a sizable reward in return.

Finding The Vulnerability On Ethereum

Hacker Saurik had found the vulnerability on Optimism, an Ethereum layer 2 rollup solution. The hacker himself published a report as to how he found the vulnerability on the solution. Looking through nano payments protocols on the rollup, he had found a vulnerability that could allow an attacker to withdraw unbridled a ‘virtually unlimited’ amount of ETH from the solution.

Related Reading | TA: Ethereum Overcome Hurdles, Why 100 SMA Is The Key

It was similar to the attack method deployed on popular smart contracts blockchain Solana that resulted in the $353 million hacks on Wormhole. Optimism, like Wormhole, mint what are known as “Wrapped Ether.”  Users deposit their Ether on the smart contract to basically serve as collateral and they are even these tokens that only exist on Optimism’s network. They then use nano payments protocol to make transactions faster and quicker.

ETH recovers above $3,100 | Source: ETHUSD on TradingView.com

Saurik who is famously known for developing the Jailbroken iOS had confirmed the vulnerability. However, instead of exploiting the vulnerability for his own personal gain, the self-styled grey hat hacker had reported it to the Optimism devs. In return, Saurik was rewarded with a $2 million bounty for his altruism, which has helped to make the network and layer 2 rollup safer for users.

Debunking Popular Rumors

After news of the vulnerability and subsequent bounty payment broke, there have been rumors circulating regarding what an attacker could have done with it if they chose to not report it to the devs. The most popular of these has been that the attacker would have been able to withdraw an unlimited amount of ETH from the network. While this has some merit to it, it is largely false.

Firstly, the vulnerability exists on a layer 2 rollup solution Optimism. While the protocol exists on the ethereum network, it is not the network itself. This means that the vulnerability was localized to the protocol alone. So while an attacker would have been able to exploit this to withdraw an ‘unlimited’ amount of ETH, they could only withdraw the available balance on the Optimism address.

Related Reading | Will Ethereum Hit $7k This Year? Finder’s Panel Says Yes

Nevertheless, it is still no secret that the results would have been devastating for users of the layer 2 protocol if a black hat hacker had found the vulnerability. This event speaks volumes about the usefulness of bug bounties. While the rewards for these bounties may seem too large at first, one must think about what the alternative would be if there was no incentive for hackers to come forward with their findings. White hat hackers no doubt help to save millions, if not billions, of dollars every year.

Featured image from Gagadget, chart from TradingView.com

Sign up now: Get Smarter about Cryptocurrency with our weekly Free newsletter

Do you have any question?  Reach out to us in Quora or any other social media, we will do our best to respond After you are Following Us  🙂

Instagram ——Twitter——-Facebook——Quora

Do you like the Article?  Please share   Thank you… Under here we will share same others post you might like

**this post contains affiliate links that will help me create new content without additional cost for you **

**I’m not a financial advisor **

**this post contains affiliate links that will help me create new content without additional cost for you **

**I’m not a financial advisor **

Next Article: Cryptocurrency for Dummies
Next Article: Is crypto the future?
Next Article: Scammers turn their attention to NFT as the crypto subsector
Next Article: What are Cryptocurrency NFT? How do they Work?

Source link


  • Trending
  • Comments
  • Latest
Deribit to Launch Futures Contracts for Bitcoin Volatility Trading

Deribit to Launch Futures Contracts for Bitcoin Volatility Trading

18 March 2023
Moscow City Crypto Exchanges Ready to Send Cash to London, Report – Exchanges Bitcoin News

Moscow City Crypto Exchanges Ready to Send Cash to London, Report – Exchanges Bitcoin News

17 March 2023
Getting Started With AI Powered Staking With Mosdex | by Mosdex | Mar, 2023

Getting Started With AI Powered Staking With Mosdex | by Mosdex | Mar, 2023

16 March 2023
Binance Halts GBP Deposits and Withdrawals

Binance Halts GBP Deposits and Withdrawals

15 March 2023
Coinbase Potentially Looking At Launching An Overseas Exchange: Report

Coinbase Potentially Looking At Launching An Overseas Exchange: Report

18 March 2023
The potential to empower disenfranchised communities in Latin America using Ethereum

The potential to empower disenfranchised communities in Latin America using Ethereum

22 March 2023
US Govt Attacks Bitcoin In New Report, Promotes A CBDC

US Govt Attacks Bitcoin In New Report, Promotes A CBDC

22 March 2023
Tips for Beginners on How to Play

Tips for Beginners on How to Play

22 March 2023
Bitcoin’s banking crisis surge will ‘attract more institutions’: ARK’s Cathie Wood

Bitcoin’s banking crisis surge will ‘attract more institutions’: ARK’s Cathie Wood

22 March 2023
Circle’s USDC Regains $1 Peg After Tumultuous Weekend

Circle’s USDC Regains $1 Peg After Tumultuous Weekend

21 March 2023

  • Home
  • Disclaimer
  • Privacy Policy
  • Digital Millennium Copyright Act Policy (DMCA)
  • Cookie Privacy Policy
  • Terms and Conditions
  • Contact us
CRYPTO NEWSMART

Copyright © 2021 Crypto Newsmart.

No Result
View All Result
  • HOME
  • BITCOIN
  • CRYPTO UPDATES
    • ALTCOIN
    • ETEREUM
    • NFT’s
    • CRYPTO PRICE ANALYSIS
  • LEARN CRYPTO
  • CRYPTO EXCHANGES
  • BLOCKCHAIN
  • MINING
  • SCAM ALERT
  • PRESS RELEASE

Copyright © 2021 Crypto Newsmart.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Manage Cookie Consent

We use cookies to optimise our website and our service.

Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage vendors Read more about these purposes
Preferences
{title} {title} {title}