coin-img-ETHETH+7.82%coin-img-BTCBTC+3.49%coin-img-SOLSOL+6.15%coin-img-XRPXRP+4.49%coin-img-CRKCRK-60.35%coin-img-WPWP-63.29%coin-img-USDCUSDC-0.01%coin-img-DOGEDOGE+5.00%coin-img-ETHETH+7.82%coin-img-BTCBTC+3.49%coin-img-SOLSOL+6.15%coin-img-XRPXRP+4.49%coin-img-CRKCRK-60.35%coin-img-WPWP-63.29%coin-img-USDCUSDC-0.01%coin-img-DOGEDOGE+5.00%coin-img-ETHETH+7.82%coin-img-BTCBTC+3.49%coin-img-SOLSOL+6.15%coin-img-XRPXRP+4.49%coin-img-CRKCRK-60.35%coin-img-WPWP-63.29%coin-img-USDCUSDC-0.01%coin-img-DOGEDOGE+5.00%coin-img-ETHETH+7.82%coin-img-BTCBTC+3.49%coin-img-SOLSOL+6.15%coin-img-XRPXRP+4.49%coin-img-CRKCRK-60.35%coin-img-WPWP-63.29%coin-img-USDCUSDC-0.01%coin-img-DOGEDOGE+5.00%

Whitehat f4lc0n Says Injective Paid Only $50,000 on Reported $500M-Scale Critical Bug

Whitehat hacker f4lc0n said a "critical" vulnerability he reported in the Injective protocol on March 16 could have enabled direct extraction of more than $500 million in onchain assets, BlockBeats reports. He stated the flaw allowed any user, without special permissions, to drain any onchain account and that after he submitted the report via Immunefi, the Injective team launched a mainnet upgrade vote the next day to patch the issue before going offline for three months. f4lc0n said the project offered a $50,000 bug bounty instead of the advertised $5 million maximum for that severity, the $50,000 has not been paid, and announced 10% of his future vulnerability bounty income will be used to publicly highlight the dispute until Injective issues what he views as the standard payout.
INJ
INJ+3.37%
Avis de non-responsabilité : le contenu ci-dessus n'engage que l'auteur et ne constitue en aucun cas l'opinion de BingX. Ce contenu ne doit pas être interprété comme un conseil en investissement de la part de BingX. Pour plus de détails, veuillez vous référer aux Conditions générales.