Series of Epic Bugs Discovered on EOS Platform

| Updated
by Julia Sakovich · 3 min read
Series of Epic Bugs Discovered on EOS Platform
Photo: Pixabay

The EOS blockchain project was notified about “a series of epic vulnerabilities” just a couple of days before its official launch.

A well-known Chinese internet security research firm Qihoo 360 has discovered a critical bug on EOS producer node that can be used by hackers to manage code on nodes remotely. After that, it has warned the EOS blockchain project about a series of epic vulnerabilities that were found out on the platform.

The official blog post on Qihoo 360’s website reads:

“This vulnerability could be leveraged to achieve remote code execution in the nodeos process, by uploading malicious contracts to the victim node and letting the node parse the malicious contract. In a real attack, the attacker may publish a malicious contract to the EOS main network”.

It is said that the private key of super nodes can be stolen by hackers and used for controlling content of newly created blocks. Moreover, attackers may have an opportunity to implement malicious contracts into new blocks and make them publicly available. As a result, it may happen that the entire network with all the nodes can appear under control of the attacker.

Subsequently, attackers may obtain the right of managing all nodes on the network, including those of cryptocurrency wallets and exchanges which will enable attackers receive full control of secret keys to cryptocurrency transactions.

Qihoo 360 has informed EOS lead developer Daniel Larimer about this alarming issues, nevertheless, there is still no official public comments on the situation from EOS.

The only publicly available response was posted by Larimer on Github:

“If any of these asserts trigger in release it shouldn’t pass, but should throw. Allowing the code to continue running in release is a potential security vulnerability and will likely result in crashes elsewhere”.

At the moment, there is still no precise information whether the launch of EOS, that is planned to take place this weekend, will now happen on time or will be postponed due to the occurred challenges.

Bugs may sometimes appear and can be fixed just in a couple of hours but the type of bug that has been revealed in this very case is considered by some external experts too serious to be urgently fixed just in a couple of days before launch.

Meanwhile, Daniel Larimer appeared on Twitter asking for some more help in finding other possible bugs that may have negative impact on the platform’s security and effectiveness of the system.

EOS coin is the world’s fifth largest cryptocurrency with a market cap of $10,6 bln. After the Qihoo 360 ’s report was published, we had an opportunity to observe declining trends in EOS prices. It lost approximately 11% and could be purchased for $10.93. Nevertheless, as it is informed by CoinMarketCap, at the press time the coin is traded at $11.99, which means that it is slowly recovering.

Altcoin News, Blockchain News, Cryptocurrency news, News
Julia Sakovich
Editor-in-Chief Julia Sakovich

Having obtained a diploma in Intercultural Communication, Julia continued her studies taking a Master’s degree in Economics and Management. Becoming captured by innovative technologies, Julia turned passionate about exploring emerging techs believing in their ability to transform all spheres of our life.

Related Articles
By May 21st, 2021
Blockchain NewsCryptocurrency newsMarket NewsNews UK Crypto Broker CoinBurp Secures $2M Funding for NFT Platform
By May 21st, 2021

After explosive growth in February and March, and April, the hype for NFTs, non-fungible tokens, averaging over $100 million in sales per month, continues. Thanks to the rapid growth of this nascent industry, capital institutions and business incubators continue to invest in developing the infrastructure for artists to offer their unique creations directly to their public.

By Katherine Rundell January 18th, 2021
Blockchain NewsNews 10 of Best Universities for Blockchain Courses
By Katherine Rundell January 18th, 2021

As blockchain skills continue to be desired in today’s job market, several universities will implement and teach these skills to incoming students, and make them job-ready, when it comes to blockchain technology and other cryptocurrencies.