coin-img-ETHETH+0.84%coin-img-BTCBTC-0.10%coin-img-SOLSOL-0.30%coin-img-XRPXRP-1.22%coin-img-USDCUSDC-0.01%coin-img-TRXTRX+1.13%coin-img-HYPEHYPE-1.23%coin-img-TONCOINTONCOIN-1.95%coin-img-ETHETH+0.84%coin-img-BTCBTC-0.10%coin-img-SOLSOL-0.30%coin-img-XRPXRP-1.22%coin-img-USDCUSDC-0.01%coin-img-TRXTRX+1.13%coin-img-HYPEHYPE-1.23%coin-img-TONCOINTONCOIN-1.95%coin-img-ETHETH+0.84%coin-img-BTCBTC-0.10%coin-img-SOLSOL-0.30%coin-img-XRPXRP-1.22%coin-img-USDCUSDC-0.01%coin-img-TRXTRX+1.13%coin-img-HYPEHYPE-1.23%coin-img-TONCOINTONCOIN-1.95%coin-img-ETHETH+0.84%coin-img-BTCBTC-0.10%coin-img-SOLSOL-0.30%coin-img-XRPXRP-1.22%coin-img-USDCUSDC-0.01%coin-img-TRXTRX+1.13%coin-img-HYPEHYPE-1.23%coin-img-TONCOINTONCOIN-1.95%

Taiko Network Hit for Over $1.7M After Raiko SGX Signing Key Exposed on GitHub

June 22 — BlockSec monitoring shows the Taiko network was attacked, with losses exceeding $1.7 million. Early findings point to a GitHub exposure of Raiko SGX enclave signing keys as the likely trigger. Raiko is Taiko's multiprover stack used to generate proofs for Taiko and Ethereum blocks. As a result, leaked Raiko SGX enclave keys could directly undermine Taiko's onchain proof-verification path. With the enclave signing key publicly accessible, the SGX attestation trust model may have been compromised. The leaked key could enable an attacker to register SGX instances they control. Those instances could then sign proof public inputs accepted by Taiko's proof verifier, allowing fraudulent state or signaling proofs to pass. The attacker would then register fake source signals as RETRIABLE and call retryMessage, prompting the ERC20Vault to release canonical L1 assets.
Selected
TAIKO
TAIKO-12.64%
ETH
ETH+0.80%
Disclaimer: The content above is only the author's opinion and does not represent BingX’s stance. It shall not be construed as investment advice from BingX. For details, refer to the Terms and Conditions.