Safe discovered security flaws at his wallet UI, while Bibit stopped the difference of $ 1.4 billion and launched a bountout protocol to track bad actors.
Ethereum-based Crypto Wallet Protocol Safe on 21 February implemented a “immediate security reform” for its multi-SIG solution after a cyber attack on Dubai-based Exchange Bibit.
North Korea’s Lazarus stole more than $ 1.4 billion from the Etharium Wallet of Bibit by exploiting weaknesses in the UI of safe wallet. The notorious Hacking Group specifically targeted the hostile JavaScript code, which is a soldier at over 400,000 Aths.
To prevent further attacks, Safe placed his wallet in a lockdown mode before announcing a phased rollout and a re -configured infrastructure.
Safe co-founder Martin Koopelman said that the team made ten changes and sent to the UI through March 1. Github Repository of Protocol Show off Among other upgrades, “full raw TX data now show on UI” and “remove specific direct hardware wallet support that has raised safety concerns”.
Baibit CEO Ben Jhou discussed the incident when podcast with host Kevin Folonier was attacked soon after signing the transaction to transfer 13,000 ETHs.
Jhou mentioned using a laser hardware wallet, but noticed that he could not fully verify the details of the transaction. The issue known as “blind signing” is a common vulnerability in multi-compress crypto transactions. According to Koopelman, the latest update of safe is aimed at providing signators with more detailed transaction data.
In response to a post of Kyber Network CEO Victor Tran about industry-wide security efforts, Copelman emphasized the importance of cooperation, but said that immediate damage control is priority.
“We are still in” fire out “mode – but once we need to follow us and TX verification security needs to be improved,” Copelman said, “Copelman said,” Copelman said, “This will include many parties to resolve many parties for good,” Copelman said.
