Monday, April 12, 2021
  • Setup menu at Appearance » Menus and assign menu to Top Bar Navigation
Advertisement
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
No Result
View All Result
Home Internet Security

New Ethereum version postponed after discovery of serious security flaw

January 16, 2019
in Internet Security
New Ethereum version postponed after discovery of serious security flaw
585
SHARES
3.3k
VIEWS
Share on FacebookShare on Twitter

A major upgrade of the Ethereum blockchain has been postponed today by the Ethereum team after a security company found a vulnerability that could have allowed hackers to steal users’ funds.

The Ethereum network update –codenamed the Constantinople Upgrade– was scheduled to launch tomorrow, January 16. A new launch date for the Constatinople rollout will be decided on Friday, January 18.

You might also like

PayPal rolls out new fraud management tools for merchants

Ransomware: The internet’s biggest security crisis is getting worse. We need a way out

Washington State educational organizations targeted in cryptojacking spree

The vulnerability is what blockchain security experts are calling a “reentrancy attack” and was discovered by ChainSecurity, whose researchers detailed the bug in a Medium blog post.

According to the company, the attack would have allowed a malicious threat actor to steal funds from users with whom the attacker engaged in an Ethereum smart contract.

A smart contract is a script that runs on the Ethereum blockchain that allows users to input Ether funds, pool funds together with other users, and receive currency back based on a series of predetermined conditions.

ChainSecurity experts discovered that the way the Ethereum Constantinople Upgrade was processing smart contracts allowed malicious actors to extract users’ funds without meeting the contract’s requirements or without the user’s approval or knowledge.

The vulnerability is called a “reentrancy attack” because it allows the attacker to re-run the same function over and over again until he exhausts all the user’s shared funds.

The company said that a quick (and incomplete) scan of the current version of the Ethereum platform did not identify smart contracts that are vulnerable to the vulnerability it discovered.

Ethereum devs said that “ChainSecurity and TrailOfBits ran (and are still running) analysis across the entire blockchain” for vulnerable contracts that may be exploited even on top of the current Ethereum platform. They said the two security companies didn’t find any evidence of the flaw being used in the wild.

The Ethereum dev team and its security group (ethsecurity.org) are working on a patch, but also on identifying similar flaws.

Owners of Ether (ETH) cryptocurrency have nothing to worry about at this moment.

More cybersecurity news:

Credit: Source link

Previous Post

Examining Potential of AI to Assist in Childbirth

Next Post

Getting started with IBM Connections Engagement Center

Related Posts

PayPal rolls out new fraud management tools for merchants
Internet Security

PayPal rolls out new fraud management tools for merchants

April 12, 2021
Ransomware: The internet’s biggest security crisis is getting worse. We need a way out
Internet Security

Ransomware: The internet’s biggest security crisis is getting worse. We need a way out

April 12, 2021
Washington State educational organizations targeted in cryptojacking spree
Internet Security

Washington State educational organizations targeted in cryptojacking spree

April 10, 2021
Critical Zoom vulnerability triggers remote code execution without user input
Internet Security

Critical Zoom vulnerability triggers remote code execution without user input

April 10, 2021
Nation-state cyber attacks targeting businesses are on the rise
Internet Security

Nation-state cyber attacks targeting businesses are on the rise

April 10, 2021
Next Post

Getting started with IBM Connections Engagement Center

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

January 6, 2019
Microsoft, Google Use Artificial Intelligence to Fight Hackers

Microsoft, Google Use Artificial Intelligence to Fight Hackers

January 6, 2019

Categories

  • Artificial Intelligence
  • Big Data
  • Blockchain
  • Crypto News
  • Data Science
  • Digital Marketing
  • Internet Privacy
  • Internet Security
  • Learn to Code
  • Machine Learning
  • Marketing Technology
  • Neural Networks
  • Technology Companies

Don't miss it

PayPal rolls out new fraud management tools for merchants
Internet Security

PayPal rolls out new fraud management tools for merchants

April 12, 2021
What Does It Take To Be a Cybersecurity Researcher?
Internet Privacy

What Does It Take To Be a Cybersecurity Researcher?

April 12, 2021
NetSuite ERP ushering a digital era for SMEs
Data Science

NetSuite ERP ushering a digital era for SMEs

April 12, 2021
Analyttica Datalab Introduces LEAPS Programs on Applied Data Science and Machine Learning
Machine Learning

Analyttica Datalab Introduces LEAPS Programs on Applied Data Science and Machine Learning

April 12, 2021
Windows, Ubuntu, Zoom, Safari, MS Exchange Hacked at Pwn2Own 2021
Internet Privacy

Windows, Ubuntu, Zoom, Safari, MS Exchange Hacked at Pwn2Own 2021

April 12, 2021
Orphaned Analytics: The Great Destroyers of Economic Value
Data Science

Orphaned Analytics: The Great Destroyers of Economic Value

April 12, 2021
NikolaNews

NikolaNews.com is an online News Portal which aims to share news about blockchain, AI, Big Data, and Data Privacy and more!

What’s New Here?

  • PayPal rolls out new fraud management tools for merchants April 12, 2021
  • What Does It Take To Be a Cybersecurity Researcher? April 12, 2021
  • NetSuite ERP ushering a digital era for SMEs April 12, 2021
  • Analyttica Datalab Introduces LEAPS Programs on Applied Data Science and Machine Learning April 12, 2021

Subscribe to get more!

© 2019 NikolaNews.com - Global Tech Updates

No Result
View All Result
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News

© 2019 NikolaNews.com - Global Tech Updates