PIVX, Possibly Other PoS Chains Vulnerable to Bug, Attackers Profit

Must Read

Grayscale Files to Become The First Bitcoin Fund to Report to SEC

Publicly traded Bitcoin (BTC) fund Grayscale Bitcoin Trust (GBTC) filed Form 10 with the United States...

Opera-Backed Fintech OPay Seals $120M Investment to Grow Across Africa

Lagos-headquartered fintech Opay has sealed $120 million in a series B financing round from a host of...

Maker Launches New Dai Today, Expects to Phase-Out Old Dai in Months

Decentralized autonomous organization (DAO) Maker will launch a new type of Dai (DAI) stablecoin today. Known as...
- Advertisement -

Private transactions cryptocurrency PIVX and over 200 other blockchains are vulnerable to a vulnerability allowing the attacker to obtain disproportionately high staking rewards.

A major staking vulnerability

Cryptocurrency consulting firm Lunar Digital Assets claimed in a post published on its website on Aug. 12 that a staking vulnerability is being used across PIVX and its forks. The weakness reportedly allows the attacker to obtain mathematically impossible staking rewards on vulnerable Proof of Stake (PoS) chains.

According to the post’s author, the PIVX development team claimed to have solved the issue in January. Nonetheless, a core developer of PoS altcoin BitGreen (BITG) noticed that the vulnerability in question is allegedly being exploited again. The consequences are explained in report in the following way:

“To put it bluntly, someone or some entity has figured out a way to game the PIVX PoS algorithm. This has crippled the rewards system of several chains, and BitGreen has notified of all exchanges that it is listed on to halt all deposits and withdrawals until further notice.”

Accusations against the PIVX team

Moreover, the firm noted that “what’s worse is that PIVX has known that this bug was not fixed and has kept quiet to themselves.” The author of the report claims that he contacted the PIVX core developers and has been told that there was no other solution than waiting for an update which would be issued in the third quarter of the current year.

He also says that after he managed to contact PIVX members directly and asked about information concerning an address which was exploiting the vulnerability in question, he obtained no answer and the attack stopped. He concludes:

“The timing is very suspicious, but I can not conclusively say with evidence that PIVX developers have been using their knowledge of the bug for their own benefits — let alone use it to exploit other chains. […] The “fake stake” exploit clearly has not been fixed for PIVX, so the question is, was it ever fixed? Or have the attackers developed a new method in carrying out similar attacks such as this one?”

- Advertisement -
- Advertisement -

Latest News

11 Years Ago Today Satoshi Nakamoto Published the Bitcoin White Paper

Today, Oct. 31, marks eleven years since the publication of the Bitcoin white paper by the still-mysterious person or...
- Advertisement -

ArBinance is Changing the Crypto Arbitrage Game with the Click of a Button

ArBinance is a professional arbitrage trading platform that aims to revolutionize cryptocurrency trading by allowing its users to conduct crypto arbitrage through...

SmartMixer is Making Bitcoin Mixing Easier for a New Generation of Users

SmartMixer is Making Bitcoin Mixing Easier for a New Generation of Users SmartMixer.io is a new bitcoin mixing service especially geared toward...

Bitpanda goes global: Announcing the Bitpanda Global Exchange and the IEO for the ecosystem token BEST

Bitpanda goes global: Announcing the Bitpanda Global Exchange and the IEO for the ecosystem token BEST Vienna-based fintech Bitpanda...

Bitpanda digitizes physical gold and silver

Vienna, 13 May 2019 – Vienna-based fintech Bitpanda launches gold and silver trading for its 1 million users. The new...