Market
CertiK Fixes $5 Million Wormhole Bridge Flaw
CertiK discovered and patched a major security flaw in the Wormhole bridge on the Aptos network, potentially saving $5 million.
This vulnerability could have let an attacker create fake token transfers, but CertiK’s swift action secured users’ funds.
Aptos’ Wormhole Bridge $5M Security Flaw Discovered
CertiK found the flaw in the Wormhole bridge on Aptos and reported it to the Wormhole team. The problem stemmed from incorrectly implementing the MOVE programming language’s ‘public(friend)’ and ‘entry’ modifiers.
The ‘public(friend)’ modifier allows functions to be called by others within the same module or by specified external accounts. In contrast, the ‘entry’ modifier allows any external account to call a function.
The bridge had a function called ‘publish_event,’ meant to announce events like token transfers. This function should only have been callable by other functions within the same module or certain specified external entities. However, the function was modified by both ‘public(friend)’ and ‘entry,’ making it possible for anyone to call ‘publish_event,’ even if they were not approved.
This flaw could have let an attacker create fake transactions, appearing to move tokens from one account to another without moving actual tokens. These fake events could have caused the Ethereum version of the bridge to mint or unlock tokens without real deposits backing them on the Aptos side, potentially draining up to $5 million.
CertiK’s Rapid Action to Patch and Secure the Wormhole Bridge
After discovering the flaw, CertiK immediately informed the Wormhole team on December 5, 2023. The team developed and tested a patch to close the security loophole. They informed the protocol’s Guardians, who approved the patch through a multi-signature vote. The protocol’s Aptos contract was then upgraded, securing the bridge. This process took approximately three hours.
Read more: Crypto Scam Projects: How To Spot Fake Tokens
Besides removing the ‘entry’ keyword from the publish_event function, the new patch also restricted the ‘governor rate limits’ on Aptos from $5 million to $1 million. This strategic move aimed to limit potential losses from future exploits. CertiK noted that current usage is below $1 million daily, so the rate limit should not affect most users.
“This case study not only underscores the critical role of proactive security practices but also celebrates the power of open source software in raising security and transparency standards across the Web3 world,” CertiK added.
Wormhole also conducted a retrospective analysis to check if the issue affected any user funds. The study confirmed no funds were illicitly transferred, and users’ balances remained safe.
This isn’t the first time Wormhole has faced security challenges. In 2022, the bridge lost over $321 million due to a bug in the Solana part of the bridge, allowing an attacker to mint unbacked tokens. Despite this setback, Wormhole improved its security practices and reclaimed $1 billion in total value locked.
Disclaimer
In adherence to the Trust Project guidelines, BeInCrypto is committed to unbiased, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify facts independently and consult with a professional before making any decisions based on this content. Please note that our Terms and Conditions, Privacy Policy, and Disclaimers have been updated.
ETF issuer WisdomTree’s European division just announced a new ETP based on XRP. This product is currently available in four EU countries, which has led XRP’s price to jump slightly.
ETPs are a common issuer strategy to earn revenue without ETF approval, but Europe will not necessarily approve one even if the US does so.
WisdomTree’s XRP ETP
WisdomTree, one of the Bitcoin ETF issuers in the US, announced that its European branch is offering an exchange-traded product (ETP) based on XRP. This new product is currently available in Germany, Switzerland, France, and the Netherlands. A growing number of issuers have filed for an XRP ETF, but WisdomTree is taking a slightly different tack.
“The WisdomTree Physical XRP ETP offers a simple, secure, and low-cost way to gain exposure to XRP, one of the largest cryptocurrencies by market capitalization. Backed 100% by XRP, XRPW is the lowest-priced XRP ETP in Europe, providing direct spot price exposure,” the announcement claimed.
The possibility of an official XRP ETF is growing with the current bull market, and Ripple CEO Brad Garlinghouse considers it “inevitable.” Still, it hasn’t happened yet, and ETP offerings allow issuers to somewhat address customers’ requirements. BitWise, which has also filed for an XRP ETF in the US, recently acquired a European ETP issuer to enter the same market.
WisdomTree, however, is no stranger to this market strategy. In May this year, it won approval to offer ETPs based on Bitcoin and Ethereum to British investors.
The UK has not yet approved a full ETF for either of these assets, but WisdomTree still gained market access. Even a fraction of the XRP market could also prove lucrative; the asset’s value spiked today.
WisdomTree Europe’s strategy page does not describe any further actions upon full approval. Even if the US approves an XRP ETF under the SEC’s new leadership, that won’t necessarily benefit WisdomTree’s European branch. For now, these ETPs built on XRP will have to suffice for this market.
Disclaimer
In adherence to the Trust Project guidelines, BeInCrypto is committed to unbiased, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify facts independently and consult with a professional before making any decisions based on this content. Please note that our Terms and Conditions, Privacy Policy, and Disclaimers have been updated.
Ethereum price started a fresh increase above the $3,220 zone. ETH is rising and aiming for more gains above the $3,350 resistance.
- Ethereum started a fresh increase above the $3,220 and $3,300 levels.
- The price is trading above $3,250 and the 100-hourly Simple Moving Average.
- There is a short-term contracting triangle forming with resistance at $3,360 on the hourly chart of ETH/USD (data feed via Kraken).
- The pair could gain bullish momentum if it clears the $3,385 resistance zone.
Ethereum Price Regains Traction
Ethereum price remained supported above $3,000 and started a fresh increase like Bitcoin. ETH gained pace for a move above the $3,150 and $3,220 resistance levels.
The bulls pumped the price above the $3,300 level. It gained over 10% and traded as high as $3,387. It is now consolidating gains above the 23.6% Fib retracement level of the recent move from the $3,036 swing low to the $3,387 high.
Ethereum price is now trading above $3,220 and the 100-hourly Simple Moving Average. On the upside, the price seems to be facing hurdles near the $3,350 level. There is also a short-term contracting triangle forming with resistance at $3,360 on the hourly chart of ETH/USD.
The first major resistance is near the $3,385 level. The main resistance is now forming near $3,420. A clear move above the $3,420 resistance might send the price toward the $3,550 resistance. An upside break above the $3,550 resistance might call for more gains in the coming sessions. In the stated case, Ether could rise toward the $3,650 resistance zone or even $3,880.
Another Decline In ETH?
If Ethereum fails to clear the $3,350 resistance, it could start another decline. Initial support on the downside is near the $3,300 level. The first major support sits near the $3,250 zone.
A clear move below the $3,250 support might push the price toward $3,220 or the 50% Fib retracement level of the recent move from the $3,036 swing low to the $3,387 high. Any more losses might send the price toward the $3,150 support level in the near term. The next key support sits at $3,050.
Technical Indicators
Hourly MACD – The MACD for ETH/USD is gaining momentum in the bullish zone.
Hourly RSI – The RSI for ETH/USD is now above the 50 zone.
Major Support Level – $3,250
Major Resistance Level – $3,385
Ethereum price started a fresh increase above the $3,220 zone. ETH is rising and aiming for more gains above the $3,350 resistance.
- Ethereum started a fresh increase above the $3,220 and $3,300 levels.
- The price is trading above $3,250 and the 100-hourly Simple Moving Average.
- There is a short-term contracting triangle forming with resistance at $3,360 on the hourly chart of ETH/USD (data feed via Kraken).
- The pair could gain bullish momentum if it clears the $3,385 resistance zone.
Ethereum Price Regains Traction
Ethereum price remained supported above $3,000 and started a fresh increase like Bitcoin. ETH gained pace for a move above the $3,150 and $3,220 resistance levels.
The bulls pumped the price above the $3,300 level. It gained over 10% and traded as high as $3,387. It is now consolidating gains above the 23.6% Fib retracement level of the recent move from the $3,036 swing low to the $3,387 high.
Ethereum price is now trading above $3,220 and the 100-hourly Simple Moving Average. On the upside, the price seems to be facing hurdles near the $3,350 level. There is also a short-term contracting triangle forming with resistance at $3,360 on the hourly chart of ETH/USD.
The first major resistance is near the $3,385 level. The main resistance is now forming near $3,420. A clear move above the $3,420 resistance might send the price toward the $3,550 resistance. An upside break above the $3,550 resistance might call for more gains in the coming sessions. In the stated case, Ether could rise toward the $3,650 resistance zone or even $3,880.
Another Decline In ETH?
If Ethereum fails to clear the $3,350 resistance, it could start another decline. Initial support on the downside is near the $3,300 level. The first major support sits near the $3,250 zone.
A clear move below the $3,250 support might push the price toward $3,220 or the 50% Fib retracement level of the recent move from the $3,036 swing low to the $3,387 high. Any more losses might send the price toward the $3,150 support level in the near term. The next key support sits at $3,050.
Technical Indicators
Hourly MACD – The MACD for ETH/USD is gaining momentum in the bullish zone.
Hourly RSI – The RSI for ETH/USD is now above the 50 zone.
Major Support Level – $3,250
Major Resistance Level – $3,385
WisdomTree Europe Launches XRP ETP
BTC Surges to $99K, ETH Shoots, XRP Jumps 25%
Rallies 10% and Targets More Upside
Rallies 10% and Targets More Upside
“Crypto Dad” Chris Giancarlo Emerges Top For White House Crypto Czar Role
Dogecoin Code Appears In CyberTruck And Model 3 Website, Will Tesla Accept DOGE Payments For Cars Soon?
2.52 Million Altcoins Are Ruining Crypto’s Future
Animoca Brands Valuation Tanks 75% In Two Years, Here’s Why
Crypto exchange BingX hacked for $43 million
Are The Big Players Losing Interest?
Hong Kong’s Securities Association Tips Authorities On Crypto Self-Regulation
Coinbase cbBTC Set to go Live on Solana
2.52 Million Altcoins Are Ruining Crypto’s Future
Animoca Brands Valuation Tanks 75% In Two Years, Here’s Why
Crypto exchange BingX hacked for $43 million
Are The Big Players Losing Interest?
Hong Kong’s Securities Association Tips Authorities On Crypto Self-Regulation
Coinbase cbBTC Set to go Live on Solana
-
Ethereum22 hours agoFundraising platform JustGiving accepts over 60 cryptocurrencies including Bitcoin, Ethereum
-
Market18 hours agoSouth Korea Unveils North Korea’s Role in Upbit Hack
-
Market23 hours agoCardano’s Hoskinson Wants Brian Armstrong for US Crypto-Czar
-
Altcoin16 hours agoSui Network Back Online After 2-Hour Outage, Price Slips
-
Market21 hours agoLitecoin (LTC) at a Crossroads: Can It Rebound and Rally?
-
Altcoin15 hours agoDogecoin Whale Accumulation Sparks Optimism, DOGE To Rally 9000% Ahead?
-
Altcoin20 hours agoWhy FLOKI Price Hits 6-Month Peak With 5% Surge?
-
Bitcoin13 hours agoMarathon Digital Raises $1B to Expand Bitcoin Holdings
