Ethical Hacker Exposes Vulnerabilities in EOS Code

Published on by Cryptoslate | Published on

Mentioned in this article
In the week leading up to the launch of the EOS mainnet, an ethical hacker has confirmed eight vulnerabilities in the blockchain's code.

As a participant of the EOSIO Bug Bounty Program run by Block One - the parent company of EOS - Guido Vranken will be compensated a minimum of $10,000 per confirmed discovery.

Having previously discovered nine bugs, Vranken - who describes himself as an "Ethereum Foundation dedicated fuzz tester" - will earn more than $200,000 for his contributions to the program.

Vranken's findings come just days after a Chinese cybersecurity firm discovered a "Critical bug" in the EOS codebase.

"The attacker can steal the private key of super nodes or control content of new blocks. What's more, attackers can pack the malicious contract into a new block and publish it. As a result, all the full nodes in the entire network will be controlled by the attacker."

Media has incorrectly reported a potential delay in the release of EOSIO V1 due to software vulnerabilities.

EOSIO V1 is on schedule; please stay tuned to our EOSIO channels for official information.

"Verify Snapshot & Boot: ERC-20 token Snapshot is verified by EOS Mainnet Launch Group and third parties. Appointed Block Producers within the EMLG initiate the Boot process."

While Vranken's compensation may appear generous, one must note that EOS - a $12.5 billion start-up - now stands in a pivotal position.

As the 5th cryptocurrency by market cap with no working product, EOS may have a huge amount riding on the mainnet's delivery as promised.

x