The Wormhole Cross Chain Bridge just invested $ ten million on a white hat hacker who identified a vulnerability in the product’s Ethereum good contract in February.
According to a recognize from Immunefi (the bug bounty co-organizer with Wormhole), an person with the code identify satya0x is the particular person who identified the vulnerability and obtained the aforementioned reward.
After dropping $ 323 million (in ETH) to hackers in February 2022, Wormhole embarked on a bug rewards plan to decrease protection dangers.
>> See far more: The Wormhole Cross Chain Bridge on Solana was breached, resulting in a reduction of $ 325 million
The Wormhole Bug Reward Program has distinct tiers, based on the severity of the vulnerability identified.
In certain, with a “low risk” degree, a contractual error can only lead to a reward of $ two,500. Meanwhile, the reward satya0x has obtained is $ ten million mainly because the danger degree is program-broad.
The Immunefi side claimed that the user’s assets have been nonetheless secure at the time the over bug was identified. Soon immediately after, Wormhole speedily rolled out the update and utilized the patch the identical day.
Hacker satya0x explained:
“I am proud of my role in uncovering this critical vulnerability, and it is a major bug affecting the entire ecosystem.”
As a end result, this vulnerability influences Wormhole’s skill to update good contracts, making it possible for hackers to handle the complete good contract.
Whitehat satya0x reported a crucial vulnerability in @wormholecrypto on February 24 by means of Immunefi.
The bug was speedily fixed, no consumer money have been impacted, and satya0x obtained a $ ten million payout from Wormhole, the biggest bounty payout on record. https://t.co/xKDGxfFLjA
– Immunefi (@immunefi) May 20, 2022
On its Twitter and medium pages, Immunefi has also published a thorough report on the vulnerabilities in the aforementioned Wormhole situation.
Synthetic currency 68
Maybe you are interested: