Safeheron discovers vulnerability in multi-signature wallets
It is reported that Safeheron, a developer of multi-party computing (MPC) wallets, said that some multi-signature wallets could be attacked by Web3 application…
It is reported that Safeheron, a developer of multi-party computing (MPC) wallets, said that some multi-signature wallets could be attacked by Web3 applications using Starnet protocol. This vulnerability affects MPC wallets that interact with Starnet applications such as dYdX. Safeheron is working with application developers to fix this vulnerability. (Cointelegraph)
Safeheron, a wallet developer: Some multi-signature wallets can be attacked by Web3 applications using Starnet protocol
Analysis based on this information:
Safeheron, a developer of multi-party computing (MPC) wallets, has discovered a vulnerability that could be exploited by Web3 applications using the Starnet protocol. This vulnerability affects multi-signature wallets that interact with Starnet applications like dYdX. Safeheron has alerted application developers and is working closely with them to patch up the vulnerability.
Multi-party computing is a cryptographic protocol that allows multiple parties to securely process data without compromising the privacy of the data or each other’s inputs. In the case of multi-signature wallets, MPC is used to ensure that multiple parties are required to authorize a blockchain transaction. Basically, to initiate a transaction, multiple parties must authorize the transaction through their respective private keys.
The MPC technology has been seen as a boon for security in the blockchain space, especially for transactions that involve large sums of money. It is said to address the problem of single-point failure, which is common with regular crypto wallets that require a single user to enter their private keys to authorize a transaction.
However, Safeheron has discovered a vulnerability that could put the security of multi-signature wallets at risk. This vulnerability arises when multi-signature MPC wallets are used to interact with Starnet applications like dYdX. The Starnet protocol allows for cross-chain communication between the Ethereum and Solana blockchains.
According to Safeheron, the Starnet protocol allows unauthorized third parties to gain access to the MPC keys of the multi-signature wallets. This means that attackers could potentially bypass the need for multiple signatures and authorize transactions on their own.
Safeheron’s discovery underscores the importance of collaboration between developers to ensure that blockchain technology is secure. Safeheron has alerted application developers about the vulnerability and is working with them closely to fix the issue.
In conclusion, while multi-party computing has been celebrated for its ability to enhance security in the blockchain space, Safeheron’s discovery shows that there is always room for improvement. It also shows that it is not enough to rely on technology alone to secure blockchain transactions. Collaboration between developers is crucial in safeguarding the integrity of blockchain applications.
This article and pictures are from the Internet and do not represent Fpips's position. If you infringe, please contact us to delete:https://www.fpips.com/8710/
It is strongly recommended that you study, review, analyze and verify the content independently, use the relevant data and content carefully, and bear all risks arising therefrom.
Recommended articles
-
Belgian encryption platform Bit4You announces suspension of service
According to reports, after one of the main service providers, CoinLoan, was declared bankrupt by an Estonian court, Belgian crypto trading platform Bit4You announced that it would
-
Reddit Resolves Major Outage, Restores Platform Performance
On March 15th, Reddit, a social media platform, was re launched after identifying and fixing a “significant outage” that prevented desktop and mobile users from browsing for nearly 5 and a half hours. The Reddit Status page shows that the outage occurred at 03:18 Beijing time on March 15, and the issue was resolved at 08:41. The social media platform Reddit has been down for more than 5 hours since the early morning, and has now been repaired Analysis based on this information:Reddit, one of the most popular social media platforms across the globe, recently experienced a significant outage that lasted for nearly 5 and a half hours. Millions of desktop and mobile users worldwide were left stranded and unable to browse the platform, causing widespread frustration and disappointment. However, the site managed to recover from the issue and was relaunched later that day. According to the Reddit Status page, the outage took place on March 15th, at around 03:18…
-
US Equity Strategist at Goldman Sachs Group Talks About End of Federal Reserve’s Rate Hike Cycle
According to reports, David Kostin, Chief US Equity Strategist at Goldman Sachs Group, stated that although this week may mark the end of the Federal Reserve\’s rate hike cycle, whi
-
XMON Token’s 95% Price Drop Due to Sudoswap Lockdrop Ending
It is reported that, according to the data disclosed by the chain analyst Lookonchain, due to the end of Sudoswap Lockdrop, 1402 XMONs were unlocked today. The…
-
Bandai Namco Entertainment Invests in SuperGaming to Expand in the Asian IP Market
According to reports, Japanese game publisher Bandai Namco Entertainment has used its “Bandai Namco Entertainment 021 Fund” from the Web3 yuan universe fund to invest in the game studio SuperGaming, which cooperates with Google Cloud. Bandai Namco Entertainment stated in a statement that this investment will further expand its business in the Asian IP market. Although the amount of this investment has not been publicly disclosed, the fund’s usual investment scale is between 10 million yen and 500 million yen. The Bandai Namco Entertainment 021 Fund was established in April last year to mainly support startups building an “IP Metauniverse”. In the early stage, it also invested in DeepMotion, an AI driven motion capture and real-time body tracking digital character solution. (samacharcentral) Web3 yuan universe fund investment game studio SuperGaming under Wandai Nangong Dream Analysis based on this information:Japanese game publisher Bandai Namco Entertainment has invested in SuperGaming, a game studio that collaborates with Google Cloud. This investment was made…
-
What software can be used to view Bitcoin line charts (what software can be used to view Bitcoin price trends)?
What software can be used to view Bitcoin line charts? You can search for rela
-
Understanding the Digital Collections Index: A Comprehensive Guide
According to reports, according to peer data, the International Weekly Index of Digital Collections fell 4.4 points to 14.2 points last week (March 21-March 27, 2023), the Domestic
-
Tom Cat Announces End of Closed Testing and No Plans for West Lake Xinchen Control
According to reports, Tom Cat stated on the interactive platform that the closed testing of the company\’s access to ChatGPT product functional prototypes has ended. The company cur
-
The Current State of the Cryptocurrency Market
According to reports, according to CoinGecko data, the current total market value of cryptocurrencies is $1.19 trillion, with a 24 hour increase of -0.08%. The 24 hour trading volu
-
Understanding the A-share Market and Its Recent Performance
According to news, the A-share market closed at 3296.4 points, with the Shanghai Composite Index rising 0.72%, the Shenzhen Composite Index closing at 11889.42 points, with a closi
-
Offchain Labs Proposes Modified Transaction Sequencing for the Arbitrum Sequencer
On March 4, the Arcitrum development team Offchain Labs published a new proposal and is proposing a modified transaction sequencing strategy for the Arcitrum s…
-
What cryptocurrency is issued by Diginex (Cryptocurrency DOT)?
Diginex has reportedly issued a cryptocurrency called \”DOT.\” According to bitco
-
Aleo opens final incentive testing network for authenticators and certifiers
According to reports, according to official Twitter, the programmable privacy network Aleo has opened its final incentive testing network for authenticators and certifiers to apply
-
IOVLabs Introduces RIF Flyover to Enhance Rootstock Infrastructure
On February 22, according to the official statement shared by IOVLabs, its new \”repayment agreement\” RIF Flyover has been released to optimize the design of th…
-
Financial report shows that Tesla did not sell digital assets in Q1 of this year
According to reports, financial reports show that Tesla did not sell digital assets in Q1 of this year.
Financial report shows that Tesla did not sell digital assets in Q1 of this -
Why Trust is Crucial in the Metaverse and Web3 Environment
According to reports, Daniel Alegre, the new CEO of Yuga Labs, stated at the \”2023 Consensus\” conference on Friday that players want to participate in the creative environment of t