Thursday, December 26, 2024
spot_img
HomeBlockChainCryptocurrencyDevelopers Block Potential 'Eight Figure' Exploit Involving Cosmos-Based Ethermint

Developers Block Potential ‘Eight Figure’ Exploit Involving Cosmos-Based Ethermint

Consensus 2023 Logo
Featured SpeakerBowTiedBull

PresidentBowTied Jungle

BowTiedBull - Consensus 2023 speaker

The pseudonymous investor BowtiedBull explores the BowtiedJungle, where citizens swap advice on investing, job-seeking, …

Secure Your Seat

Consensus 2023 Logo
Featured SpeakerBowTiedBull

PresidentBowTied Jungle

BowTiedBull - Consensus 2023 speaker

The pseudonymous investor BowtiedBull explores the BowtiedJungle, where citizens swap advice on investing, job-seeking, …

Secure Your Seat

A recent vulnerability affecting the Cosmos ecosystem and Ethermint was recently discovered by crypto trading firm Jump Crypto and blocked before it could cause an impact of as much as ‘eight figure’ U.S. dollars, Cosmos developers Evmos told CoinDesk.

The compromised network in this incident was Ethermint, which enables the use of Ethereum smart contracts within the Cosmo ecosystem, and is employed by several chains, including Cronos, Kava, and Canto.

The bug could have potentially allowed an attacker to bypass specific smart contract functions called handlers, leading to transaction fee theft and denial of service to users.

Immediately upon receiving the report, the Evmos Core Development team and the Cronos team collaborated with Jump Crypto to address the issue. The implementation included a patch to block transactions with ‘MsgEthereumTx’ messages, allowing to the elimination of the attack vector.

No malicious exploitation occurred, ensuring the continued stability and reliability of the affected chains.

The Cronos team awarded Jump Crypto a $25,000 bounty for discovering and disclosing the vulnerability.

Evmos said that the root cause of the vulnerability lay in the improper handling of transactional messages in the Ethermint implementation, specifically the interaction between the MsgEthereumTx message and the MsgExec message.

The MsgExec message is used in the Cosmos SDK to allow authorized message execution by allowing one account to grant authorization to another account. However, this feature was not properly secured, allowing the attacker to bypass the ‘EthGasConsumeDecorator,’ which is responsible for deducting gas fees from transactions.

The attacker exploited the vulnerability by embedding a MsgEthereumTx message inside a MsgExec message. This bypassed the EthGasConsumeDecorator, resulting in the attacker not paying gas fees for their transactions.

DISCLOSURE

Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

The leader in news and information on cryptocurrency, digital assets and the future of money, CoinDesk is a media outlet that strives for the highest journalistic standards and abides by a strict set of editorial policies. CoinDesk is an independent operating subsidiary of Digital Currency Group, which invests in cryptocurrencies and blockchain startups. As part of their compensation, certain CoinDesk employees, including editorial employees, may receive exposure to DCG equity in the form of stock appreciation rights, which vest over a multi-year period. CoinDesk journalists are not allowed to purchase stock outright in DCG.


Learn more about Consensus 2023, CoinDesk’s longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.



Read more about

 

Post Disclaimer

The information provided in our posts or blogs are for educational and informative purposes only. We do not guarantee the accuracy, completeness or suitability of the information. We do not provide financial or investment advice. Readers should always seek professional advice before making any financial or investment decisions based on the information provided in our content. We will not be held responsible for any losses, damages or consequences that may arise from relying on the information provided in our content.

RELATED ARTICLES

Most Popular

Recent Comments

error: Content is protected !!