Highly Recommended Reading: Chinese internet security firm finds major vulnerabilities in EOS
(thenextweb.com)
Security researchers are finding loopholes in the security of cryptocurrencies and blockchains one after another. The latest in the series is the blockchain and smart contracts platform EOS.
Qihoo 360, a Chinese internet security company, has discovered a series of high-risk vulnerabilities in the EOS network.These vulnerabilities allow attackers to gain remote control over any EOS node, construct and publish malicious smart contracts, or become a ‘free miner’ and dig up digital currencies based on the EOS platform.
Since the attacker can gain complete control over an EOS node, they can literally do whatever they want. This includes stealing the key of the EOS super node, controlling the transactions of cryptocurrencies on the EOS network, or acquiring financial and privacy data about the users including their wallet private keys.
EOS was gearing up for the launch of its main network — commonly referred to as Mainnet — which was slated to happen on June 2, 2018. But, the launch might be postponed in light of this discovery.
As per the official statement from Qihoo 360, they have made the person in charge of EOS network aware of the vulnerabilities, who has promised to hold off the Mainnet launch until the bugs are fixed.
Qihoo 360 has stated that the security risks with the EOS network are unprecedented, and the entire blockchain industry and security experts need to pay extra attention towards enhancing the security of blockchain networks.
We have reached out to EOS for a comment. If they respond, we will update the story accordingly.
Update [May 30, 2018 — 8:55 AM GMT] EOS has stated that it’s working to resolve the vulnerabilities, and the Mainnet launch will take place on schedule.
Discover more insightful stories like this one on TNW here: https://thenextweb.com/hardfork/2018/05/29/eos-security-mainnet-launch/
Qihoo 360, a Chinese internet security company, has discovered a series of high-risk vulnerabilities in the EOS network.These vulnerabilities allow attackers to gain remote control over any EOS node, construct and publish malicious smart contracts, or become a ‘free miner’ and dig up digital currencies based on the EOS platform.
Since the attacker can gain complete control over an EOS node, they can literally do whatever they want. This includes stealing the key of the EOS super node, controlling the transactions of cryptocurrencies on the EOS network, or acquiring financial and privacy data about the users including their wallet private keys.
EOS was gearing up for the launch of its main network — commonly referred to as Mainnet — which was slated to happen on June 2, 2018. But, the launch might be postponed in light of this discovery.
As per the official statement from Qihoo 360, they have made the person in charge of EOS network aware of the vulnerabilities, who has promised to hold off the Mainnet launch until the bugs are fixed.
Qihoo 360 has stated that the security risks with the EOS network are unprecedented, and the entire blockchain industry and security experts need to pay extra attention towards enhancing the security of blockchain networks.
We have reached out to EOS for a comment. If they respond, we will update the story accordingly.
Update [May 30, 2018 — 8:55 AM GMT] EOS has stated that it’s working to resolve the vulnerabilities, and the Mainnet launch will take place on schedule.
Discover more insightful stories like this one on TNW here: https://thenextweb.com/hardfork/2018/05/29/eos-security-mainnet-launch/
-
- 1
Francisco Gimeno - BC Analyst Fortunately for EOS (and for its future users) the Chinese internet security company Qihoo 360 spotted several security risks in this network, and EOS is working on it now. This show us how careful blockchain companies have to be when launching any product, testing it properly. A safe and useful Blockchain product means a success, not just economically but for the development of the new digital economy. The opposite is a disaster.