According to a report by blockchain security firm Halborn, several blockchains contain vulnerabilities collectively known as “Rab13s.” March 13th.
DOGE, ZEC, LTC Solve Security Problems
Halborn said it had signed a contract to inspect Dogecoin’s code in March 2022, and reported that the project had patched the vulnerabilities it discovered.
Zcash was announced as well March 13th Released an update that addressed the exploit. The project attributed the vulnerability to the Bitcoin Core code, adding that there was no evidence that an attack had taken place against Zcash itself.
Litecoin appears to have issued an update to address the vulnerability. March 12thHowever, it does not directly refer to Halborn or its findings.
Horizen also said it had been informed of the potential vulnerability by Halborn.I opened the issue and published the fix March 13th.
The primary vulnerability allows attackers to take unpatched blockchain nodes offline by sending consensus messages to them. By taking down a node, an attacker could make her 51% attack on a related blockchain network more viable. The attacker could then launch a double-spending attack or damage the network.
A second vulnerability allows an attacker to kill a node via an RPC request. A third vulnerability allows an attacker to execute code through her RPC. Both of these attack methods require valid credentials, making them difficult to execute.
Hundreds of blockchains are at risk
Halborn said more than 280 other blockchain networks contain variations of these vulnerabilities, adding that they share exploit kits with those projects.
Some of the issues are long-known Bitcoin vulnerabilities, according to the security firm, while other attack vectors are unique to Dogecoin and other networks. Not all exploits are possible in the network.
According to Halborn, more than $25 billion in cryptocurrency could be at risk as the problem spreads.
This story is a work in progress, and CryptoSlate has reached out to various blockchain projects for comment.Please contact us [email protected] Provide comments.