Vulnerabilities Force 0x Exchange v2.0 Contract To Shut Down And Migrate To A Patched Version

0x Exchange v2.0 contract has been made aware of a potential vulnerability in its Exchange contract that was disclosed by a third party security analyst Sam Sun. The exchange contract comprises of a lot of business logic in the 0x protocol comprising of filling and canceling of orders, execution of transactions, signature validation as well as registration on fresh contracts within the platform.

Will Warren the firm’s CEO and co-founder explained about the vulnerability in a blog:

“This vulnerability would allow an attacker to fill certain orders with invalid signatures. This vulnerability does not affect the ZRX token contract; your digital assets are safe.”

As a precautionary measure, the startup decided to close down the Exchange contract as well as Asset Proxy contracts that are responsible for executing asset transfers within the 0x protocol. The CEO explained that the move was taken to avoid exploitation of the vulnerability by fraudsters. He was quick to note that no one has so far taken advantage of the vulnerability and, as such, no funds have been lost so far. However, due to changes made, the currently deployed 0x contracts cannot process trades and are unable to be used, explained Warren.

Patched Version

According to Warren a team from the firm was quickly assembled to address the vulnerability and was able to patch both Exchange and Asset Proxy contracts overnight and deployed to the Ethereum Mainnet which helped to fix the vulnerability.

Warren said that teams will need to point to the patched and newly deployed Exchange and AssetProxy contracts as well as clear their order books of outstanding orders. Users have also been advised to reset their allowances for the new 0x AssetProxy contracts.

Warren also stated that his firm is also verifying that other smart contracts are not vulnerable to this exploit before disclosing it publicly in a formal post-mortem report.

The CEO was full of praises to Sam Sun for identifying the bug or vulnerability, pointing out that 0x gives generous vulnerability awards to white hat hackers and network members who identify possible vulnerabilities or bugs. Warren said that he will organize a community conversation in the following few days after serious reflection to make sure that 0x protocol smart contract security measures are transparent, rigorous and community-vetted.

The CEO apologized to the 0x community for any inconvenience caused and assured that all the security issues of the platform had been fixed.

Should blockchain and crypto-based firms encourage white hat hackers by offering high bug bounties? Let us know in the comments section.

Get Free Email Updates!

*Action* Enter Best Email to Get Trending Crypto News & Bitcoin Market Updates

I will never give away, trade or sell your email address. You can unsubscribe at any time.

Joseph Kibe
Joseph Kibe
Joseph is a blockchain and cryptocurrency enthusiast, with a strong conviction that exposure of blockchain technology is for the good of the society. Fascinated by the massive potential of cryptocurrencies and the technology behind them – blockchain – Joseph spent lots of his time learning more about the industry, becoming a polished expert writer in the sector. He covers any cryptocurrency and blockchain related content.

[Alert] Use the author's self-conducted information at your own risk, do you own research, never invest more than you are willing to lose.

[Disclosure] The published news and content on BitcoinExchangeGuide should never be used or taken as financial investment advice. Understand trading cryptocurrencies is a very high-risk activity which can result in significant losses. Editorial Policy \\ Investment Disclaimer

LEAVE A REPLY

Please enter your comment!
Please enter your name here

3,485FansLike
2,795FollowersFollow
4,267FollowersFollow

Live Bitcoin Price & Latest BTC Charts

Today's Latest Crypto News

China State-Owned Media Covers Crypto as 2020’s Best Performing Assets Driven by DeFi & Weak Dollar

In an unusual coordinated report on Friday, several Chinese state-owned media covered cryptocurrencies, calling them the best-performing assets of 2020. The country’s top broadcaster, China...

Crypto Exchange Gemini Makes an Aggressive Move, Adds 15 Hot DeFi Tokens

DeFi is all the rage in today's crypto world, and no one wants to be left behind, especially cryptocurrency exchanges. Over the past few months,...

Ethereum ‘Getting Ready for Spadina' Testnet Next Week

The Spadina testnet of ETH 2.0 has been scheduled for genesis before the month ends, on September 29 at 12 pm UTC, as per...

KuCoin Hack: Exchange’s Insurance Fund to Cover User Loss “Completely,” Tether Freezes 33M USDT

The Singapore-based cryptocurrency exchange KuCoin released a statement regarding detecting large withdrawals on September 26, 2020, at 03:05:37 (UTC+8). The exchange has reportedly lost $150...

Crypto Custodian, Anchorage, Adds Support for DeFi Tokens: BAL, NXM, AAVE, UNI, and YFI

Anchorage, the Delaware corporation headquartered in San Francisco, California, and digital asset custodian for institutional investors is diversifying its DeFi token options for its...

BitcoinExchangeGuide is a hyper-active daily crypto news portal with care in cultivating the cryptocurrency culture with community contributors who help rewrite the bold future of blockchain finance. Subscribe on Google News, see the mission, authors, editorial links policy, investment disclaimer, privacy policy. Got News? Contact us, we are human too. Note: nothing here is financial advice, do your own research thoroughly.

Start Using Crypto Today