BSV
$47.28
Vol 20.11m
3.66%
BTC
$70010
Vol 51844.61m
3.16%
BCH
$342.89
Vol 304.53m
2.76%
LTC
$66.41
Vol 398.23m
0.02%
DOGE
$0.17
Vol 4273.75m
12.68%
Getting your Trinity Audio player ready...

A vulnerability that dates back to last March is still present in over 280 blockchain networks, including Litecoin (NASDAQ: LTC) and Zcash, potentially putting over $25 billion worth of digital assets at risk, a cybersecurity firm has revealed.

In a report this week, security researchers from Halborn revealed they first discovered the vulnerability after being contracted to audit Dogecoin’s (NASDAQ: DOGE) open-source codebase in March 2022. The DOGE team has since then fixed the vulnerability, which the Halborn team code-named Rab13s.

“However, after a broader review, Halborn determined that the same vulnerabilities affected over 280 other networks, including Litecoin and Zcash, putting over $25 billion of digital assets at risk,” Rob Behnke, the co-founder and CEO of Halborn says.

Behnke adds that his team found multiple vulnerabilities inside the open-source code for blockchain networks with a similar codebase to DOGE, including Litecoin and Zcash. Successful exploitation of the vulnerability relevant to each network could allow the hackers to launch a denial of service or remote execution attack.

Halborn further pointed out that attackers could shut down individual nodes by exploiting the vulnerability, exposing the networks to a 51% attack.

The company has developed an exploit kit for Rab13s that developers can leverage to demonstrate the attacks on different networks. It also shared all the necessary technical information with the relevant stakeholders to assist them in fixing the vulnerability.

Due to the severity of the issues and the possible ramifications, Halborn says it’s not releasing further technical or exploit detail currently.

The revelation comes at a time when hackers have stolen nearly $200 million from DeFi protocol Euler Finance, the largest hack in 2023. The attackers exploited a vulnerability in the protocol’s code, leveraging a flash loan from Aave to execute a series of transactions that exposed the protocol’s security deficiencies.

Watch: Dr. Craig Wright’s keynote speech on Cloud Security, Overlays & Blockchain

Recommended for you

Tether execs draw dividends as threat of US indictment grows
Tether issued its latest quarterly 'attestation' of the reserve assets allegedly backing the $119.4B in issued USDT as of September...
November 5, 2024
Blockchain firm R3 looking for a buyer: report
R3 has raised over $120 million over the years, but broader market conditions have proven tough as its permissioned blockchain...
November 5, 2024
Advertisement
Advertisement
Advertisement