Polygon pays $2M bounty on bug which could have compromised $850M in user funds
The white hat hacker speculated that the bug might have been created from "using someone else’s code and not having a 100% understanding of what it does." White hat hacker Gerhard Wagner has earned $2 million after reporting a solution to a potentially costly “double-spend” bug on the Polygon network.In an Oct. 21 blog post from Immunefi, a security service that helps facilitate bug reports in decentralized finance projects, Polygon network’s Plasma Bridge was at risk of having $850 million removed by a knowledgeable hacker. According to the project, the vulnerability would have allowed....
Related News
In the face of an increase in the number of attacks on DeFi platforms, Polygon has decided to take new measures. The Ethereum scaling platform recently announced a $2 million bug bounty. In that way, Polygon expects to “root out and eliminate potential security flaws”, according to a press release. Only a few months ago, the DeFi ecosystem experienced one of its biggest hacks when it lost over $600 million on different platforms. Polygon recorded an $85 million loss at the time. While Ethereum and Binance Smart Chain (BSC) recorded a combined estimate of $500 million in losses. Related....
Over $200 million worth of users' funds could have been at risk if the whitehat chose to exploit the vulnerability for personal gain instead of reporting it to developers. On Tuesday, Ethereum (ETH) bridging and scaling solution Aurora announced it had paid out a $6 million bounty to ethical security hacker pwning.eth, who discovered a critical vulnerability in the Aurora Engine. The exploit allegedly placed over $200 million worth of capital at risk. The sum was paid in collaboration with Immunefi, a leading platform for Web 3.0 bug bounties, with $145+ million bounties available and $45+....
Nomad announced that it’s offering up to a 10% bounty to return funds stolen from the recent hack on the Nomad bridge on Aug. 2. Nomad announced a bounty of up to 10% for the return of the stolen funds from the Nomad bridge. In a website announcement and tweet, the company publicly provided a wallet address for sending the funds. The bounty is applicable to anyone who comes forward from now on or already returned funds. At the time of writing, Nomad recovered more than $20 million. The Nomad token bridge suffered a massive hack on Aug. 2. This incident was among the largest in the history....
"As a bug bounty, we are offering you 15% of the funds if you return it and have a conversation with our team," said Kyber Network. KyberSwap, the decentralized exchange built on liquidity protocol Kyber Network, has offered a hacker 15% of the funds from a $265,000 exploit as a bug bounty.In a Thursday blog post, Kyber Network said a hacker had used a frontend exploit to pilfer roughly $265,000 worth of user funds from KyberSwap. The protocol said it will compensate all users for any missing funds related to the exploit, and directly addressed the hacker to give them an opportunity to....
Digital currency exchange BTER announced that it has lost 7,170 bitcoins, or roughly $1.75 million at press time, in an apparent hack on its cold wallet system. In a statement posted to the China-based exchange's website, the company said that it had shut down its platform in the wake of the attack and that withdrawals for user balances "will be arranged later". A separate post on Chinese social media platform Weibo from BTER claimed that it was working with law enforcement officials on the matter. Initially, BTER had posted on its website that a "security check" was underway and that the....