ERC-2771 integration introduces address spoofing vulnerability OpenZeppelin – Cointelegraph
Soon after Thirdweb revealed a security vulnerability that could impact a variety of common smart contracts used across the Web3 ecosystem, OpenZeppelin identified two specific standards as the root cause of the threat.
On Dec. 4, Thirdweb reported a vulnerability in a commonly used open-source library, which could impact pre-built contracts, including DropERC20, ERC-721, ERC-1155 (all versions) and AirdropERC20.
In response, smart contracts development platform OpenZepplin and nonfungible token marketplaces Coinbase NFT and OpenSea proactively informed users about the threat. Upon further investigation, OpenZepplin found that the vulnerability stems from a problematic integration of two specific standards: ERC-2771 and Multicall.
The smart contract vulnerability in question arises after the integration of ERC-2771 and multicall standards. OpenZepplin identified 13 sets of vulnerable smart contracts, as shown below. However, crypto service providers are advised to address the issue before bad actors find a way to exploit the vulnerability.
OpenZepplins investigation found that the ERC-2771 standard allows overriding certain call functions. This could be exploited to extract the senders address information and spoof calls on their behalf.
OpenZepplin advised the Web3 community using the aforementioned integrations to use a 4-step method for ensuring safety: disable every trusted forwarder, pause contract and revoke approvals, prepare an upgrade and evaluate snapshot options.
In addition, Thirdweb launched a mitigation tool that allows users to connect their wallets and identify if a contract is vulnerable.
The decentralized finance platform Velodrome also deactivated its relay services until a new version was installed.
Related: Coinbases Base network gets OpenZeppelin security integration
In a recent Cointelegraph Magazine article, experts revealed how artificial intelligence (AI) can help audit smart contracts and aid cybersecurity efforts.
James Edwards, the lead maintainer for cybersecurity investigator Librehash, said that while AI chatbots can develop smart contracts, deploying them in a live environment is risky.
On the other hand, Edwards highlighted the technologys potential to vet smart contracts. Recent tests showed AIs ability to audit contracts with an unprecedented amount of accuracy that far surpasses what one could expect and would receive from GPT-4.
While he concedes its not as good as a human auditor yet, it can already do a strong first pass to speed up the auditors work and make it more comprehensive.
Magazine: Lawmakers fear and doubt drives proposed crypto regulations in US
Continue reading here:
ERC-2771 integration introduces address spoofing vulnerability OpenZeppelin - Cointelegraph
- AI-Driven Smart Contracts in Crypto: Navigating Legal Risks and Seizing Strategic Opportunities - AInvest - August 24th, 2025 [August 24th, 2025]
- How Transforming Industries in 2025: The Power of Smart Contracts - Vocal - August 22nd, 2025 [August 22nd, 2025]
- Flow Q2 DeFi Report: Record growth in TVL, smart contracts, and Disney partnership - FXStreet - August 22nd, 2025 [August 22nd, 2025]
- Institutional Capital's New Playground: Why Ethereum's Smart Contracts Are Winning Over Bitcoin - AInvest - August 22nd, 2025 [August 22nd, 2025]
- Federal Reserve Examines Tokenization, Smart Contracts, and AI for Payments - CoinCentral - August 22nd, 2025 [August 22nd, 2025]
- Sports Stars and Smart Contracts: How BlockDAG and ADA Are Rewriting the Crypto Playbook - AInvest - August 22nd, 2025 [August 22nd, 2025]
- Fed is studying tokenization, smart contracts, and AI in payments, says Governor Waller - Crypto Briefing - August 20th, 2025 [August 20th, 2025]
- Fed's Waller: Fed researching tokenization, smart contracts, and AI in payments - MSN - August 20th, 2025 [August 20th, 2025]
- Before Ethereum Had Smart Contracts, It Had Believers Lyno AI Finds Its Own Early Supporters - Live Bitcoin News - August 20th, 2025 [August 20th, 2025]
- Fed Seeks Tech-Driven Payment Revolution: AI, Stablecoins, and Smart Contracts Take Center Stage - AInvest - August 20th, 2025 [August 20th, 2025]
- Ethereum News Today: Ethereum's Smart Contracts Rewrite FinanceInstitutional Bet on Blockchain's Future - AInvest - August 20th, 2025 [August 20th, 2025]
- Smart contracts have dumb insurance, and it's hurting the industry - Cointelegraph - August 20th, 2025 [August 20th, 2025]
- XRP News Today: SolMining Launches XRP-Powered Smart Contracts for Passive Income with Fixed Returns - AInvest - August 9th, 2025 [August 9th, 2025]
- Threat Actors Exploit Smart Contracts to Drain Over $900K from Crypto Wallets - gbhackers.com - August 7th, 2025 [August 7th, 2025]
- Powering Trust: The Secure, Automated, and Transparent Technology Behind Sunny Minings XRP Smart Contracts - StreetInsider - August 6th, 2025 [August 6th, 2025]
- Sunny Mining : From Airdrop Rewards to Smart Contracts - The Profit Toolkit of XRP Mining - openPR.com - August 3rd, 2025 [August 3rd, 2025]
- AMMs Reshape DeFi Trading with Smart Contracts and Liquidity Pools - AInvest - August 1st, 2025 [August 1st, 2025]
- Unlocking The Power: How Smart Contracts Drive The Utility And Flexibility Of Crypto Tokens - Outlook India - August 1st, 2025 [August 1st, 2025]
- Stellar XLM Targets $3.43 by 2031 Driven by Smart Contracts and Deflationary Model - AInvest - August 1st, 2025 [August 1st, 2025]
- By 2025, over 60% of global food supply chains will use blockchain-based smart contracts for traceability. - Farmonaut - August 1st, 2025 [August 1st, 2025]
- Smart contracts and staking arrive on Bitcoins base layer - Cointelegraph - July 30th, 2025 [July 30th, 2025]
- [LIVE] Ten Years of Ethereum: From Smart Contracts to a Global Financial Layer - Cryptonews - July 30th, 2025 [July 30th, 2025]
- Ethereum (ETH) Launch Anniversary: Impact on Smart Contracts, DeFi, and Trading Strategies in 2025 - Blockchain News - July 30th, 2025 [July 30th, 2025]
- [LIVE] Ten Years of Ethereum: From Smart Contracts to a Global Financial Layer - TradingView - July 30th, 2025 [July 30th, 2025]
- Ethereum News Today: Ethereum ETFs Attract $1.85B Inflows 25-Fold Bitcoin as Institutions Shift to Smart Contracts and Regulatory Clarity - AInvest - July 28th, 2025 [July 28th, 2025]
- Beyond the XRP Price Boom: JAMining's Smart Contracts Offer Overlooked Stability in Crypto Income - International Business Times Australia - July 24th, 2025 [July 24th, 2025]
- Zama And OpenZeppelin Team Up To Deliver Confidential Smart Contracts For Institutions - BlockchainReporter - July 24th, 2025 [July 24th, 2025]
- How Smart Contracts Are Transforming 21st Century Business Operations - Vocal - July 22nd, 2025 [July 22nd, 2025]
- Which sectors are fastest adopting smart contracts development, and how can we access these markets - Vocal - July 20th, 2025 [July 20th, 2025]
- A New Tool Uncovers Over $11.2 Billion at Risk in Ethereum Smart Contracts - HackerNoon - July 18th, 2025 [July 18th, 2025]
- Learn How to Create Smart Contracts on Ethereum with Solidity - NASSCOM Community - July 18th, 2025 [July 18th, 2025]
- Enecuum (ENQ): For Building And Deploying dApps And Smart Contracts - CoinIdol - July 18th, 2025 [July 18th, 2025]
- Smart Contracts Market Size Predicted to Cross USD 9.2 Billion at 21.40% CAGR by 2032 - openPR.com - July 16th, 2025 [July 16th, 2025]
- EarnMining Debuts Smart Cloud Mining Platform with Free Bitcoin Contracts and App Integration - Morningstar - July 14th, 2025 [July 14th, 2025]
- Bitcoin Hyper Emerges as a Leading Crypto Presale, Bringing Smart Contracts and Solana Speed to the Bitcoin Network - CryptoNinjas - July 12th, 2025 [July 12th, 2025]
- Grayscales Q2 2025 Fund Rebalancing: Strategic Moves in DeFi, Smart Contracts, and AI Blockchain - OKX - July 12th, 2025 [July 12th, 2025]
- EarnMining Debuts Smart Cloud Mining Platform with Free Bitcoin Contracts and App Integration - GlobeNewswire - July 12th, 2025 [July 12th, 2025]
- Solana vs. Ozak AI Price Forecast: Smart Contracts or Smart AIWhich Will 100x? - Live Bitcoin News - July 10th, 2025 [July 10th, 2025]
- Smart traceable framework for transportation of transplantable organs using IPFS, iot, and smart contracts - Nature - July 10th, 2025 [July 10th, 2025]
- Revolutionizing Digital Transactions with Ethereum Smart Contracts - Vocal - July 6th, 2025 [July 6th, 2025]
- Why the Outlook for the Smart Contracts Market Is So Positive - International Banker - July 4th, 2025 [July 4th, 2025]
- The Role of Smart Contracts in RWA Tokenization - NASSCOM Community - July 2nd, 2025 [July 2nd, 2025]
- Stablecoins, Smart Contracts and The Rise of More Intelligent Cash - HackerNoon - July 2nd, 2025 [July 2nd, 2025]
- Stablecoins, smart contracts and the rise of more intelligent cash - ChannelLife New Zealand - June 29th, 2025 [June 29th, 2025]
- XRP News Today: XRP Ledger Introduces Version 2.5.0 With Smart Contracts And Enhanced Interoperability - AInvest - June 29th, 2025 [June 29th, 2025]
- Smart Contracts at the Card Table: Automating Trust in Online Poker Rooms - TechSpective - June 28th, 2025 [June 28th, 2025]
- From Idea to Code: Building Smart Contracts with Remix Solidity - NFTevening - June 24th, 2025 [June 24th, 2025]
- Ethereum Just Dropped the Fusaka Upgrade And It Could Change Smart Contracts Forever! - Pintu - June 24th, 2025 [June 24th, 2025]
- Ethereum Rolls Out 4 New EIPs in Fusaka Upgrade to Power the Future of Smart Contracts - TronWeekly - June 22nd, 2025 [June 22nd, 2025]
- Smart Contracts on the Blockchain: What They Are, How They Work, and Examples - NASSCOM Community - June 20th, 2025 [June 20th, 2025]
- From Smart Contracts to Privacy Coins: Leading Crypto to Buy Includes BlockDAG - NFTevening - June 14th, 2025 [June 14th, 2025]
- How Ethereum Fuels Web3 Innovations: Smart Contracts, DeFi, and dApps - Greensboro News and Record - May 28th, 2025 [May 28th, 2025]
- How Ethereum Fuels Web3 Innovations: Smart Contracts, DeFi, and dApps - Greensboro News and Record - May 28th, 2025 [May 28th, 2025]
- ETH Rallies Toward $2600 amid Smart Contracts and Whale Activity Spike - Benzinga - May 28th, 2025 [May 28th, 2025]
- Bitlayer Teams Up With Major Bitcoin Miners to Bring Smart Contracts to Bitcoin - eGamers.io - May 28th, 2025 [May 28th, 2025]
- OP_CTV and Smart Contracts on Bitcoin: Is Programmable Bitcoin Finally Here? - CCN.com - May 17th, 2025 [May 17th, 2025]
- Smart contracts can think and respond like AI agents Heres how - Cointelegraph - April 30th, 2025 [April 30th, 2025]
- Analyst Says Think Bigger Now, as Cardano Hit $90B Market Cap in 2021 Without Smart Contracts - The Crypto Basic - April 30th, 2025 [April 30th, 2025]
- Ethereum: The Blockchain Powering Smart Contracts, DeFi, and More - The Danville Register and Bee - April 18th, 2025 [April 18th, 2025]
- Smart Contracts Market Poised for Significant Growth Amidst Rising Blockchain Adoption and Demand for Automated Agreements FMIBlog - FMIBlog - April 10th, 2025 [April 10th, 2025]
- South Africa: Blockchain and smart contracts to transform agriculture - ZAWYA - April 10th, 2025 [April 10th, 2025]
- Ethereum 2.0: The Future Of Smart Contracts - Outlook India - April 10th, 2025 [April 10th, 2025]
- Hacker Exploits Smart Contracts Vulnerability, Steals $13 Million in Ethereum - Cryptodnes.bg - March 28th, 2025 [March 28th, 2025]
- Scam Alert: Another 6,260 ETH Lost in GMX-Linked Smart Contracts - TradingView - March 28th, 2025 [March 28th, 2025]
- Trends Shaping the $3.2 Billion Smart Contracts Market, - GlobeNewswire - March 25th, 2025 [March 25th, 2025]
- Smart Contracts Market Size, Share 2025 Analysis of Rising - openPR - March 25th, 2025 [March 25th, 2025]
- Ethereum: the king of smart contracts or a victim of its own ambitions? - Binance - March 25th, 2025 [March 25th, 2025]
- What is a Blockchain Oracle? | Connecting Smart Contracts to the Real World | Get Started with Bitcoin.com - Bitcoin.com - March 5th, 2025 [March 5th, 2025]
- The Impact Of AI Generated Smart Contracts On Automation And Security - Outlook India - March 5th, 2025 [March 5th, 2025]
- Russian Central Bank Governor Says Interest in Smart Contracts Rising, Hints at Rollout of New Digital Ruble - The Daily Hodl - March 3rd, 2025 [March 3rd, 2025]
- Top Cryptos to Buy and Hold for Short Term: Qubetics QubeQode IDE, Ethereums Smart Contracts, and Bitcoins Scarcity - NewsWatch - March 3rd, 2025 [March 3rd, 2025]
- Transitioning from Sharded Blockchain to Sharded Smart Contracts - Tekedia - March 3rd, 2025 [March 3rd, 2025]
- Jamie Dimon's Longstanding Belief In Smart Contracts Revealed Ahead Of JPMorgan's Ethereum ETF Deal - MSN - March 1st, 2025 [March 1st, 2025]
- AGII Revolutionizes Smart Contracts and Automation with Adaptive AI Technology - EIN News - March 1st, 2025 [March 1st, 2025]
- Crypto's New Frontier: AI-Smart Contracts Are Here! - Be3 - March 1st, 2025 [March 1st, 2025]
- How Smart Contracts Are Revolutionizing Business And Finance - Outlook India - March 1st, 2025 [March 1st, 2025]
- Decentralizing Finance: How Smart Contracts Are Reshaping The Financial Landscape - Outlook India - March 1st, 2025 [March 1st, 2025]
- What is possible on Cardano (ADA) without Smart Contracts? - The Currency Analytics - February 23rd, 2025 [February 23rd, 2025]
- Healthcare smart contracts to reach $10B by 2030 - CoinGeek - February 23rd, 2025 [February 23rd, 2025]
- Qubetics ($TICS), Tron (TRX), and Cronos (CRO): The Future of Blockchain Development, Scalable Smart Contracts, and Crypto Payments Best Coins to Buy... - February 23rd, 2025 [February 23rd, 2025]