Custodial Lightning Network Service Attack Discovered by LN ‘Newbie’ — Hacker...
On September 18, a Redditor posted to the r/bitcoin forum and explained how he discovered a way to “attack [the] lightning Network’s custodial services.” The Reddit account dubbed “Reckless Satoshi” wanted to figure out if a “discrepancy between real routing fees and service’s transaction fee can be exploited for a profit.” The researcher disclosed that he wanted to see how large the damage could be and said “it is bad.” 6 Lightning Network Custodial Services Attacked, Researcher Discloses Findings to Offenders....
Related News
The lightning vulnerability was made public on Oct 9. Lightning network node operators running LND versions prior to the Oct. 1 version 0.11 upgrade have been urged to upgrade immediately after a vulnerability was discovered affecting LND versions 0.10 and below.The vulnerability was made public in an Oct. 9 announcement from Lightning engineer Conner Fromknecht, head of cryptographic engineering at Lightning Labs. Fromknecht said:“While we have no reason to believe these vulnerabilities have been exploited in the wild, we strongly urge the community to upgrade to lnd 0.11.0 or above....
The creator of Blixt Wallet discusses the various wallet options for lightning and the future of the lightning ecosystem
Arbitrum, a popular Layer 2 solution for Ethereum, got involved with a white hat hacker on September 19. According to a source, the hacker discovered a potential vulnerability in Arbitrum’s code. As a result, the network used 400 ETHs, worth about $560,000, as a pay-off. Over the years, many hacks and exploits have hit the […]
"The poly did offered a bounty, but I have never responded to them. Instead, I will send all of their money back," said the hacker. The hacker behind a $610 million attack on the cross-chain decentralized finance (DeFi) protocol Poly Network has returned almost all of the stolen funds amid the project saying their actions constituted “white hat behavior.”According to a Thursday update on the attack from Poly Network, all of the $610 million in funds taken in an exploit that used "a vulnerability between contract calls” have now been transferred to a multisig wallet controlled by the....
Over 2000 MongoDB installations targetted by Bitcoin ransomware. Hacker demands 0.2 BTC as ransom to return the data. MongoDB, one of the widely-used database installation used in conjunction with JavaScript based applications has become a target of Ransomware attacks. The latest attack is said to have compromised at least 2000 MongoDB installations. The hacker behind the attack, going by the name “harak1r1” is demanding a ransom of 0.2BTC from affected users. The attack seems to exploit a well-known vulnerability detected back in 2015. The ransomware has targeted open servers running....