Investing.com - Financial Markets Worldwide
Get 40% Off
Get 40% Off
⚠ Earnings Alert! Which stocks are poised to surge?
See the stocks on our ProPicks radar. These strategies gained 19.7% year-to-date.
Unlock full list

Vulnerability Found In Dogecoin Is Still Present On 280 Network

Published 03/14/2023, 09:13 PM
Updated 03/14/2023, 09:15 PM
Vulnerability Found In Dogecoin Is Still Present On 280 Network

  • Blockchain security firm Halborn has discovered a zero-day vulnerability in 280 networks.

  • The vulnerability was discovered in Dogecoin’s codebase in March last year.

  • The networks at risk include Litecoin and Zcash with over $25 billion of digital assets at risk.

Blockchain security firm Halborn recently released a report which laid out the details of a zero-day vulnerability that affected over 280 networks in the crypto space. The vulnerability was first discovered in March last year when the firm evaluated Dogecoin’s open-source codebase for any vulnerabilities that could affect the security of the blockchain.

According to Halborn’s report, the firm conducted a broad review involving other networks after identifying the vulnerability in Dogecoin. This revealed similar issues with other networks including Litecoin and Zcash among several others. The blockchain security firm has estimated that over $25 billion of digital assets are at risk due to the vulnerability.

“Due to codebase differences between the networks, not all the vulnerabilities are exploitable on all the networks, but at least one of them may be exploitable on each network. On vulnerable networks, a successful exploitation of the relevant vulnerability could lead to denial of service or remote code execution,” Halborn CEO Rob Behnke stated.

The vulnerability, which has been codenamed Rab13s by Halborn, was found inside the peer-to-peer (p2p) messaging mechanism of the affected networks. It exposes the network to malicious consensus messages sent by a bad actor in order to control the network by initiating a 51% attack.

Another vulnerability in the Remote Procedure Call (RPC) services can allow bad actors to crash the node using RPC requests. However, such an exploit would require valid credentials, which reduces the likelihood of the entire network being at risk. As far as a fix is concerned, Halborn has come up with an exploit kit for Rab13s, which includes a proof of concept with configurable parameters to demonstrate the attacks on different networks.

The post Vulnerability Found In Dogecoin Is Still Present On 280 Network appeared first on Coin Edition.

See original on CoinEdition

Latest comments

Install Our App
Risk Disclosure: Trading in financial instruments and/or cryptocurrencies involves high risks including the risk of losing some, or all, of your investment amount, and may not be suitable for all investors. Prices of cryptocurrencies are extremely volatile and may be affected by external factors such as financial, regulatory or political events. Trading on margin increases the financial risks.
Before deciding to trade in financial instrument or cryptocurrencies you should be fully informed of the risks and costs associated with trading the financial markets, carefully consider your investment objectives, level of experience, and risk appetite, and seek professional advice where needed.
Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. The data and prices on the website are not necessarily provided by any market or exchange, but may be provided by market makers, and so prices may not be accurate and may differ from the actual price at any given market, meaning prices are indicative and not appropriate for trading purposes. Fusion Media and any provider of the data contained in this website will not accept liability for any loss or damage as a result of your trading, or your reliance on the information contained within this website.
It is prohibited to use, store, reproduce, display, modify, transmit or distribute the data contained in this website without the explicit prior written permission of Fusion Media and/or the data provider. All intellectual property rights are reserved by the providers and/or the exchange providing the data contained in this website.
Fusion Media may be compensated by the advertisers that appear on the website, based on your interaction with the advertisements or advertisers.
© 2007-2024 - Fusion Media Limited. All Rights Reserved.