The Polygon (MATIC) cryptocurrency undertaking at a single level risked shedding all of its MATIC money ahead of an emergency network update earlier this month.
On December thirty, bug bounty platform Immunefi announced that it had awarded a $ two.two million reward to a white hat hacker named LeonSpacewalker, who previously reported an particularly essential vulnerability with Polygon (MATIC). This is the biggest person bug bounty ever awarded to a white hat hacker.
Specifically, this vulnerability lies in Polygon’s Proof-of-Stake contract (MRC-twenty contract), which could lead an attacker to hijack the contract and purchase the release of all 9.two billion MATIC tokens (valued at MRC -twenty). of $ 24 billion at the time of creating) is owned by the contract. For comparison, the complete provide of MATIC is ten billion tokens, which usually means that hackers can very own 92% of all produced MATIC.
LeonSpacewalker reported the vulnerability to Immunefi on December three, and realizing the severity, Immunefi speedily contacted the Polygon group right. Polygon confirmed that the vulnerability was true and began developing the patch, efficiently deploying it on the Mumbai tesnet on four/twelve and prepared to be launched on the primary network.
Post mortem polygon bugfix!
White hat @leonspacewalker get a big bounty of $ two.two million for his essential discovery.https://t.co/yfNZeN0kZO
– Immunefi (@immunifi) December 29, 2021
However, through this time, the vulnerability was uncovered and exploited by an attacker, resulting in the reduction of 801,601 MATIC (really worth somewhere around $ two million). Polygon has announced that it will bear the harm from the vulnerability itself. Then, yet another anonymous hacker also identified the aforementioned vulnerability, reported it to Polygon, and was awarded a bug bounty of in excess of $ one.27 million from the undertaking.
Polygon’s growth group rolled out the patch to the project’s core network by means of an unscheduled tricky fork on December 5th.
Although particulars of the incident had been not disclosed to the neighborhood till December 29, there was a lot speculation about Polygon detecting the vulnerability, stemming from the network acquiring to carry out an irregular tricky fork often. At the time, Polygon co-founder Mihailo Bjelic reassured that the undertaking had encountered a non-threatening incident and that a lot more info would be launched quickly.
The rate of the MATIC was not as well impacted by the information, correcting somewhat in the USD two.four region immediately after hitting a record of USD two.93 on December 27th.
This is the 2nd time in the fourth quarter of 2021 Polygon has identified a protection vulnerability with the possibility of leading to severe harm. As Coinlive reported in October, the undertaking awarded $ two million – the biggest person bug reward to date – to a white hat hacker who efficiently reported a bug connected to the Plasma Bridge undertaking, resulting in a probable reduction of $ 850 million.
In December, it was Solana’s flip to be “lucky” to steer clear of losses of in excess of $ two.six billion when their protection holes had been also identified and promptly reported by white hat hackers.
Synthetic Currency 68
Maybe you are interested: