EOS Has Even More Vulnerabilities Than First Thought, Per HackerOne Blockchain Researchers

2019-2-6 23:47

Blockchain researchers continue to find critical vulnerabilities in blockchain project EOS. The company behind EOS, Block.one, has already handed out $50,750 worth of bug bounties in the past five weeks, including five bounties labeled as “critical vulnerabilities”.

In January 2019 alone, Block.one closed eight vulnerability reports submitted by white hat hackers, giving away a total of $50,750 in bug bounties. Of those eight bug bounties, five qualified as “critical vulnerabilities”. Researchers who discover a critical vulnerability are awarded a bounty of $10,000 in exchange for their work.

All of this drama continues to occur with EOS months after its problematic launch. In the months following the launch of EOS in May 2018, Block.one awarded over $500,000 in bug bounties. That accounted for more than 60% of all bug bounty rewards awarded by blockchain companies.

Crypto and blockchain researchers continue to find vulnerabilities in the popular blockchain network.

However, EOS isn’t the only one dealing with a sudden surge of bug issues. Several other major blockchain companies were also processing bug bounties throughout January. TRON and exchange service Robinhood, for example, each closed three bug reports. Cobinhood closed two bug Roberts. Monero, Electroneum, Coinbase, and Gatecoin also closed one bug report each in January.

All of this information comes from HackerOne, a breach disclosure platform. HackerOne discloses bug bounties awarded to various security researchers across the industry.

Blockchain Bug Bounties Remain a Small Segment of the Security Industry

It’s easy to be skeptical of blockchain technology based on all of these bug bounties over the past month. However, it’s important to note that blockchain only represented a small slice of all bug bounties claimed over the last month.

Of the 1,400 new bug reports submitted to HackerOne in January, only a handful came from the blockchain industry. In comparison, blockchain companies closed over 3,000 bug reports in 2018, earning security researchers a total of $900,000 in bug bounties.

It’s also important to note that HackerOne isn’t a comprehensive source of security breaches from across the industry. HackerOne features bug reports disclosed by security reserachers. The real number of bugs in blockchain-based platforms – and other software industries – is much higher.

Should EOS Holders Be Worried?

Ultimately, EOS has had significant concerns since launch. Some have called them growing pains. Others see it as a major weakness. The truth is: EOS is one of the best-funded blockchain companies in the crypto space. They have a bug bounty program like this specifically to find vulnerabilities.

According to the latest report from HackerOne, that bug bounty program is working as intended. Security researchers have an incentive to find and disclose vulnerabilities within EOS instead of exploiting them.

Of course, it remains to be seen how many more EOS vulnerabilities remain undisclosed.

Bitcoin (BTC), Ethereum (ETH), XRP (Ripple), and BCH Top Coin Price Watch (Feb 5th)

Similar to Notcoin - Blum - Airdrops In 2024

origin »

High Performance Blockchain (HPB) íà Currencies.ru

$ 0 (+0.00%)
Îáúåì 24H $0
Èçìåíåèÿ 24h: 0.00 %, 7d: 0.00 %
Cåãîäíÿ L: $0 - H: $0.0064459
Êàïèòàëèçàöèÿ $0 Rank 99999
Öåíà â ÷àñ íîâîñòè $ 0.176 (-100%)

blockchain vulnerabilities eos five researchers bounties block

blockchain vulnerabilities → Ðåçóëüòàòîâ: 41


Blockchain is unhackable but these are 5 possible vulnerabilities of “the new Internet”

Can blockchain be hacked? It seems like a day cannot pass without news popping up about something getting hacked. From your grandma screaming at her Facebook for serving her an add to a phishing site which emptied her credit card to American press screaming at Russians for (allegedly and unlikely) helping elect Donald Trump become […] The post Blockchain is unhackable but these are 5 possible vulnerabilities of “the new Internet” appeared first on CaptainAltcoin.

2018-12-1 04:17


Ôîòî:

REMME Is on Track to Deliver a Password-less Future with Blockchain

With billions of people and devices connected to the internet at any given point of time, online security has perhaps never been this crucial. Despite all the vulnerabilities the approach implies, sensitive data – including personal identities and financial records – is still stored on centralized servers accessible via password authentication.

2018-10-28 18:00


With $417K, EOS accounts for two-thirds of all cryptocurrency bug bounties in 2018

As interest, adoption, and venture funding in blockchain tech continue to rise, so do attacks from hackers. In an effort to counteract potential threats, a growing list of startups in the cryptocurrency space have opted to launch programs to invite hackers to disclose vulnerabilities responsibly – instead of exploiting them for personal gains.

2018-8-8 18:30


Ôîòî:

Etherscan rushes to plug vulnerabilities following strange hacking attempts overnight

Etherscan, the most widely used Ethereum blockchain explorer, has quickly patched security vulnerabilities overnight as hackers exploited certain parts of its service. Hackers successfully manipulated the Disqus API – a third-party service used by Etherscan that allows for comments to be left on Ethereum wallet addresses.

2018-7-24 13:00


Ôîòî:

Tron (TRX) Foundation Hands Over Bug Bounty Program to HackerOne

The Tron (TRX) Foundation had a Mainnet Bug Bounty program aimed at rewarding developers who discovered potential technical vulnerabilities in the Tron Mainnet. Through this project, the Tron Foundation was hoping to attract global leaders in network security so as to sustain the Tron mainnet and make it the most secure and stable public blockchain in […] The post Tron (TRX) Foundation Hands Over Bug Bounty Program to HackerOne appeared first on Ethereum World News.

2018-7-15 16:52


How To Prevent Breaches Like Bancor

Although it appears that exchange hacks are becoming the new normal within the crypto industry, this could have been prevented if the smart contracts were properly tested for vulnerabilities. Yo Kwon, CEO and Founder of Hosho, the world’s leading blockchain security firm, has provided commentary on the breach and the importance of smart contract auditing […]

2018-7-11 10:06