Lightning network vulnerability discovered, upgrade immediately

An undisclosed vulnerability in LND versions 0.10.x and below was revealed Thursday. Developers are urging node operators to update to the newest version.

The potential for “griefing” attacks on Bitcoin’s Lightning Network is a serious threat. Here’s how they work and why they deserve a fix. The post Good Griefing: A Lingering Vulnerability On Lightning Network That Still Needs Fixing appeared first on Bitcoin Magazine.

“Considering how much was at stake, I believe our team has made the best decisions possible given the circumstances,” said Polygon’s co-founder Jaynti Kanani. Ethereum-based layer two scaling network Polygon has quietly fixed a vulnerability that put almost $24 billion worth of its native token MATIC at risk. According to a Dec. 29 blog post from Polygon, the “critical” vulnerability in the network’s Proof-of-Stake (PoS) Genesis contract was first highlighted by two whitehat hackers on Dec. 3 and Dec. 4 via blockchain security and bug bounty hosting platform Immunefi.All you need to know....

During security testing a vulnerability was exposed on the Authy app, a two-factor authentication tool. Less than 0.2% of Authy users were affected. An outside security research team discovered the vulnerability which affects users who changed the phone number on Authy accounts since February 2014. The users affected were no longer able to access their original phone and so thus had to prove phone ownership. This process included government issued ID’s. Authy immediately moved to patch the vulnerability and has no evidence the vulnerability was exploited by nefarious characters. Authy sent....

Bitcoin underwent a major network update, the Taproot Upgrade, on 04:10 UTC on Nov. 14. This is the first major upgrade that the network went through since the Segregated Witness (SegWit). The SegWit upgrade eventually resulted in the development and launch of the Lightning Network in 2018. The Taproot upgrade was originally proposed by Bitcoin […]