BSV
$56.03
Vol 65.8m
0%
BTC
$94022
Vol 25663.94m
-0.5%
BCH
$434.87
Vol 313.27m
-1.28%
LTC
$100.41
Vol 379.05m
-4.03%
DOGE
$0.33
Vol 1737.26m
-2.12%
Getting your Trinity Audio player ready...

Hong Kong-based cryptocurrency exchange OKEx has put the brakes on all ECR20 deposits following the possible discovery of a bug in at least 12 smart contracts that are built to the ECR20 standard. The news came out Tuesday, forcing the exchange into action to prevent attackers from exploiting the bug.

The smart contract bug, called “BatchOverFlow,” allows an attacker to create tokens from thin air and then deposit them into a verified Ethereum wallet. In a statement, OKEx said attackers who exploit the bug “can generate an extremely large amount of tokens, and deposit them into a normal address,” which “makes many of the ERC-20 tokens vulnerable to price manipulations of the attackers.”

“To protect public interest, we have decided to suspend the deposits of all ERC-20 tokens until the bug is fixed. Also, we have contacted the affected token teams to conduct investigation and take necessary measures to prevent the attack,” according to the exchange.

Following OKEx’s suspension, another cryptocurrency exchange followed suit. Changelly, which operates as a broker between exchanges and users, announced via Twitter that it would be suspending deposits following “an exploit check.” Changelly promised to bring the tokens back as soon as they’re certain “there is no vulnerability in deposits received.”

The bug was first identified over the weekend and published in a post on Medium. The author of the post, “ranimes,” claims that it could affect over 20 ERC20 smart contracts. The post includes several proofs-of-concept, showing the validity of the bug.

How much damage has been done and what tokens were affected isn’t known. However, BeautyChain, a beauty-themed ecosystem, was already exploited. Once the exploit of its coin, BEC, was identified, exchanges began suspending BEC trading, and some rolled back BEC trades.  OKEx rolled back BEC/BTC, BEC/ETH and BEC/USDT to 1:18 PM April 22, Hong Kong time.

Recommended for you

BTC miner Bit Digital acquires Montreal site, new client announced
Bit Digital has spent $23 million on the Montreal site, which it will customize to host a 5MW data center...
January 10, 2025
Hive Digital shifts operations to Texas, targets Trump-era support
Hive also revealed that its operational hash rate shot up 50% due to operational efficiencies and lower power costs, and...
January 8, 2025
Advertisement
Advertisement
Advertisement