Bitcoin
BTC$65 050.15

-2.08%

Ethereum
ETH$3 405.15

-5.63%

Tether
USDT$1.000085

0.08%

Binance Coin
BNB$586.04

-3.53%

Solana
SOL$132.95

-10.70%

USD Coin
USDC$1.000242

0.02%

Patched vulnerability could’ve crippled ETH over the past 2 years


19 May 2021

#Ethereum

The Ethereum Foundation has come clean about a security vulnerability first spotted in 2019 that could have brought the mainnet to a halt until the Berlin upgrade last month. The Ethereum Foundation has published a blog post outlining a potentially catastrophic vulnerability that could have resulted in the mainnet being brought down at a cost of less than five-figures up until the execution of the Berlin hardfork last month.

A May 18 blog post describes the vulnerability as having posed “a severe threat against the Ethereum platform” until April’s upgrades allowed it to dodge the bullet. The report describes the threat as having been an “open secret,” noting it was once publicly disclosed by mistake. Following the implementation of the Berlin hard fork, the foundation estimates the threat is low enough to warrant full disclosure at this time, stating:

“It’s important that the community is given a chance to understand the reasoning behind changes that negatively affect the user experience, such as raising gas costs and limiting refunds.”

The post details that Ethereum’s state consists of a patricia-merkle trie, conceptually likening new accounts on the Ethereum network to new leaves growing on a tree. With the growth of the Ethereum network, increases to gas costs have been implemented from October 2016 to protect against denial-of-service attacks, including the controversial Ethereum Improvement Proposal, or EIP-1884. In 2019, Ethereum security researchers Hubert Ritzdorf, Matthias Egli, and Daniel Perez teamed up to weaponize an exploit enabled by the recent upgrades, with the attack triggering random trie lookups that could “lead to blocktimes in the minute-range.” A report published that year stated that delays caused by the attack will become longer as Ethereum’s state grows, “which allows efficient DoS attacks against Ethereum.”

After various proposals from developers were rejected throughout 2020, Vitalik Buterin teamed up with Martin Swende to author EIP-2929 and EIP-2930 — upgrades that raised gas prices “only for things not already accessed” to prevent the attack. The EIPs were introduced alongside the Berlin upgrade on April 15, 2021. As such, the blog estimates the Berlin upgrade reduced the effectiveness of the exploit by 50 times.

Ethereum is not the only network to come clean about long-term vulnerabilities after implementing upgrades to protect against said exploits. In September 2020, crypto researchers Braydond Fuller and Javed Khan published a paper revealing a “high” severity vulnerability for layer-two solutions built on top of BTC such as the Lightning Network. Despite the vulnerability being introduced and the authors estimating 50% of Bitcoin nodes were exposed to the vector, the authors did not identify any attempts at exploiting the weakness.


Related

Crypto may be ready for a new leg down
Crypto may be ready for a new leg down
Cryptocurrencies wait for a signal
Cryptocurrencies wait for a signal
What are dynamic NFTs?: Use cases and examples
What are dynamic NFTs?: Use cases and examples
Shanghai Upgrade Fires Up ETH and Altcoins
Shanghai Upgrade Fires Up ETH and Altcoins
Challenges of data accessibility in the NFT market
Challenges of data accessibility in the NFT market
Is the A.I. revolution about to pump Nvidia stocks?
Is the A.I. revolution about to pump Nvidia stocks?
Five tips for investing during a global recession
Five tips for investing during a global recession
What is NFT ticketing and how does it work?
What is NFT ticketing and how does it work?
The crypto market is cheaper than a trillion again
The crypto market is cheaper than a trillion again

Top Cryptocurrencies with Price Predictions

# Crypto Prediction Accuracy CVIX Price 24h 7d Market Cap 7d price change
1 Bitcoin (BTC) BTC Bitcoin predictions 89.2% 15 $65 050.15 -2.08% -5.31% $1 282 381 498 798 BTC 7 days price change
2 Ethereum (ETH) ETH Ethereum predictions 83.2% 23 $3 405.15 -5.63% -6.09% $416 371 407 438 ETH 7 days price change
3 Tether (USDT) USDT Tether predictions 91.2% 1 $1.000085 0.08% 0.03% $112 562 166 877 USDT 7 days price change
4 Binance Coin (BNB) BNB Binance Coin predictions 83.2% 25 $586.04 -3.53% -5.32% $86 490 719 528 BNB 7 days price change
5 Solana (SOL) SOL Solana predictions 76.8% 40 $132.95 -10.70% -15.37% $61 396 036 364 SOL 7 days price change
6 USD Coin (USDC) USDC USD Coin predictions 91.6% 3 $1.000242 0.02% 0.01% $32 548 547 004 USDC 7 days price change
7 XRP (XRP) XRP XRP predictions 83.2% 31 $0.482647 -0.76% -0.88% $26 820 915 414 XRP 7 days price change
8 Toncoin (TON) TON Toncoin predictions 68% 67 $7.35 -7.80% 3.60% $17 922 555 725 TON 7 days price change
9 Dogecoin (DOGE) DOGE Dogecoin predictions 67.2% 61 $0.118312 -13.25% -16.41% $17 126 164 916 DOGE 7 days price change
10 Cardano (ADA) ADA Cardano predictions 79.2% 40 $0.369609 -10.94% -15.02% $13 207 774 437 ADA 7 days price change
11 SHIBA INU (SHIB) SHIB SHIBA INU predictions 57.2% 94 $0.000018 -14.70% -21.16% $10 404 166 604 SHIB 7 days price change
12 Lido stETH (STETH) STETH Lido stETH predictions 93.2% 1 $2 941.39 -0.40% -3.32% $10 258 752 564 STETH 7 days price change
13 Avalanche (AVAX) AVAX Avalanche predictions 68.8% 58 $26.01 -12.71% -18.07% $10 232 271 315 AVAX 7 days price change
14 Wrapped TRON (WTRX) WTRX Wrapped TRON predictions 88.4% 9 $0.114599 -2.57% -2.46% $10 018 572 668 WTRX 7 days price change
15 TRON (TRX) TRX TRON predictions 92.8% 9 $0.114477 -2.91% -2.55% $9 990 678 307 TRX 7 days price change

Be the first to receive Cryptocurrency Price Predictions and Forecasts daily

Get cryptocurrency price predictions, forecasts with analysis and news right to your inbox.

© 2015-2024 Crypto-Rating.com

The usage of this website constitutes acceptance of the following legal information. Any contracts of financial instruments offered to conclude bear high risks and may result in the full loss of the deposited funds. Prior to making transactions one should get acquainted with the risks to which they relate. All the information featured on the website, including information about the cryptocurrencies and bitcoin is intended solely for informational purposes, is not a means of advertising them, and doesn't imply direct instructions for investing. Crypto Rating shall not be liable for any loss, including unlimited loss of funds, which may arise directly or indirectly from the usage of this information. The editorial staff of the website does not bear any responsibility whatsoever for the content of the comments or reviews made by the site users about cryptocurrencies. The entire responsibility for the contents rests with the authors. Reprint of the materials is available only with the permission of the editorial staff.