Web3 developer Thirdweb boosts bounty to $50,000 in light of fresh smart contract security risks – CryptoSlate
Thirdweb, a Web3 software development kit (SDK) provider, confirmed the presence of a security vulnerability in a widely used open-source library, impacting numerous Web3 smart contracts, according to a Dec. 4 statement on social media platform X (formerly Twitter).
The firm stated that the vulnerability was initially identified on Nov. 20 and impacted a variety of smart contracts across the web3 ecosystem, including some of its pre-built smart contracts.
However, itclarified that the vulnerability has yet to be exploited and refrained from disclosing the open-source library to prevent potential exploitation. The firm wrote:
Based on our investigation so far, this vulnerability has not been exploited in any thirdweb smart contracts. However, smart contract owners must take mitigation steps on certain pre-built smart contracts that were created on thirdweb prior to November 22nd, 2023 at 7pm PT.
Thirdweb identified 13 affected smart contracts, including AirdropERC20, ERC721, ERC1155, and others, impacted by the vulnerability.
Smart contract owners are advised to take proactive mitigation steps to prevent exploitation. Additionally, Thirdweb assured ongoing efforts with security partners to develop tools for easy identification and execution of necessary mitigation measures.
Depending on the contracts nature, these steps might involve contract locking, snapshot creation, and migration to a new contract. Additionally, users of these contracts are encouraged to revoke approvals on all Thirdweb contracts.
Thirdweb is also increasing the bounty rewards for its platform to $50,000 and is implementing a more rigorous auditing process.
Meanwhile, 0xngmi, the pseudonymous developer of DeFillama, urged the community to revoke their approvals to thirdweb contracts because people might have interacted with them without knowing as they are white-labeled.
Several NFT projects, including OpenSea, have responded to concerns raised by the vulnerability.
OpenSea confirmed discussions with Thirdweb regarding security concerns in specific NFT collections. The NFT platform hinted at forthcoming support for affected collection owners and anticipated changes related to contract migration on their platform.
Some NFT collections like CoolCats and ApesRare have reassured their holders they are not affected by these vulnerabilities.
However, Thirdwebs disclosure approach has received criticism within the community.
View post:
- Why (Almost) Everyone in Ethereum Is So Excited About a Wallet-Related Proposal - Unchained - Unchained - April 13th, 2024 [April 13th, 2024]
- Ethereum's Pectra upgrade slated for Q4 2024, bringing smart contract features and improved UX for wallets - Crypto Briefing - April 13th, 2024 [April 13th, 2024]
- Ethereum's Pectra upgrade to make normal wallets 'smart' and improve UX - Cointelegraph - April 13th, 2024 [April 13th, 2024]
- Ex-Amazon engineer sentenced to 3 years in prison for $12m crypto hack - crypto.news - April 13th, 2024 [April 13th, 2024]
- How Are Smart Contracts Transforming Financial Transactions? - IT News Africa - April 13th, 2024 [April 13th, 2024]
- Enhancing Smart Contract Security With SolidityScan and Blockscout Integration - Business - April 13th, 2024 [April 13th, 2024]
- Top 15 Use Cases of Blockchain in the Real World, 2024 - Analytics Insight - April 13th, 2024 [April 13th, 2024]
- exSat Unveiled: Pioneering the Future of Bitcoin Scalability and Interoperability with Layer 2 Solutions - FinanceFeeds - April 9th, 2024 [April 9th, 2024]
- ZkLink looks to solve Ethereum's fragmented liquidity with a layer 3 but there are risks - DLNews - April 9th, 2024 [April 9th, 2024]
- 1 in 6 new Base meme coins are scams, 91% have vulnerabilities - TradingView - April 9th, 2024 [April 9th, 2024]
- The AI-Based Smart Contract Audit Firm "Bunzz Audit" Has Officially Launched - Chronicle-Tribune - April 9th, 2024 [April 9th, 2024]
- BlockDAG Smart Contract Leads With 20,000x ROIs As Top Trending Crypto Surpassing Dogecoin Rally And ICP's ... - Blockchain Magazine - April 9th, 2024 [April 9th, 2024]
- The complete guide to full stack BSV blockchain development - CoinGeek - April 9th, 2024 [April 9th, 2024]
- What Is Ethereum Restaking? - Ledger - April 9th, 2024 [April 9th, 2024]
- The Contract Evolution: Are Smart Contracts Outsmarting Tradition? - yTech - April 1st, 2024 [April 1st, 2024]
- Vitalik Buterin Initiates 'The Purge': Ethereum Protocol Simplification for Enhanced Efficiency - TradingView - April 1st, 2024 [April 1st, 2024]
- sCrypt Hackathon 2024: Making Ordinals easier with smart contracts - CoinGeek - April 1st, 2024 [April 1st, 2024]
- Smart Contracts and Family Law: Revolutionizing Agreements for the Modern Family - The Good Men Project - April 1st, 2024 [April 1st, 2024]
- NEAR launches tool for signing transactions on Bitcoin, Ethereum and more - Blockworks - April 1st, 2024 [April 1st, 2024]
- sCrypt Hackathon 2024: Project Babbage on why users should be at the center of digital economy - CoinGeek - April 1st, 2024 [April 1st, 2024]
- Cardano Gains Momentum: Innovative Developments Promise Continued Expansion and Evolution - West Island Blog - April 1st, 2024 [April 1st, 2024]
- How smart accounts and account abstraction can unlock Ethereum's full utility - Cointelegraph - March 22nd, 2024 [March 22nd, 2024]
- Stellar will invest $100M in Soroban smart contract apps in bid to beat Ethereum - VentureBeat - March 22nd, 2024 [March 22nd, 2024]
- Top 10 Intriguing Ways EVM (Ethereum Virtual Machine) Was Popularized By DeFi Craze - Blockchain Magazine - March 22nd, 2024 [March 22nd, 2024]
- Cardano (ADA)'s Smart Contract Boom: Is ADA Heading to $5? - CryptoTicker.io - Bitcoin Price, Ethereum Price & Crypto News - March 22nd, 2024 [March 22nd, 2024]
- Solana vs Ethereum: Which Smart Contracts Blockchain Should You Pick? - CoinCodex - March 22nd, 2024 [March 22nd, 2024]
- Contribution of Chainlink to the advancement of smart contracts - Android Headlines - March 22nd, 2024 [March 22nd, 2024]
- Blockchain evolution with MANTA for Sora and intelligent contracts - Cointelegraph - March 22nd, 2024 [March 22nd, 2024]
- Top 10 Amazing Ways Ethereum Limitations Can Be Resolved By DApps Support - Blockchain Magazine - March 22nd, 2024 [March 22nd, 2024]
- The Anticipated Altcoin Season- A Look at the Possibilities and Potential Players Satoshi Business News - The San Bernardino American News - March 22nd, 2024 [March 22nd, 2024]
- Crypto to Buy Now: Stellar's Sorban, Scorpion Casinos' Daily Staking Reward for 10x Gains and Uniswaps Volatility - Analytics Insight - March 22nd, 2024 [March 22nd, 2024]
- Smart Contracts Go Live on Stellar, Kicking Off a "New Era" for the Network - Cryptonews - February 23rd, 2024 [February 23rd, 2024]
- Stacks (STX) price outperforms the market as interest in layer-2 Bitcoin grows - TradingView - February 23rd, 2024 [February 23rd, 2024]
- This Is What Vitalik Buterin Thinks About Artificial Intelligence (AI) - BeInCrypto - February 23rd, 2024 [February 23rd, 2024]
- 200-year-old Scotch whiskey maker enters the AI age with generated labels - ReadWrite - February 23rd, 2024 [February 23rd, 2024]
- Stellars Protocol 20 upgrade goes live, bringing smart contracts to the mainnet - Invezz - February 23rd, 2024 [February 23rd, 2024]
- Smart Contracts: the future of efficient and transparent business interactions - NL Times - February 23rd, 2024 [February 23rd, 2024]
- Understanding DAOs: The Pros and Cons of Decentralized Autonomous Organizations - Geeks World Wide - February 23rd, 2024 [February 23rd, 2024]
- Vitalik Buterin says AI could help solve Ethereum's 'biggest technical risk' - Cointelegraph - February 23rd, 2024 [February 23rd, 2024]
- Chainlink Bulls Brace For Explosive Growth Following $216 Million Whale Accumulation - TradingView - February 23rd, 2024 [February 23rd, 2024]
- Demystifying Smart Contracts: The Power of Decentralization | by Advancio | Dec, 2023 - Medium - December 10th, 2023 [December 10th, 2023]
- Web3 Firm Thirdweb Finds Major Vulnerability In Smart Contracts - Cryptonews - December 10th, 2023 [December 10th, 2023]
- What is Flare (FLR)?: Will Flare Price Explode in 2024? - CryptoTicker.io - Bitcoin Price, Ethereum Price & Crypto News - December 10th, 2023 [December 10th, 2023]
- Smart contract exploit in TIME token leads to $188k loss - crypto.news - December 10th, 2023 [December 10th, 2023]
- The Future of Trust and Efficiency in Transactions - Medium - December 10th, 2023 [December 10th, 2023]
- Chainlink Community Staking Pool Full, Drawing More Than $620M - Unchained - December 10th, 2023 [December 10th, 2023]
- ERC-2771 integration introduces address spoofing vulnerability OpenZeppelin - Cointelegraph - December 10th, 2023 [December 10th, 2023]
- Introduction Of Smart Contract | by Ronintvmedia | Dec, 2023 - Medium - December 10th, 2023 [December 10th, 2023]
- The Top 10 Ethereum Developments That Impacted History | by Ragunath | Dec, 2023 - Medium - December 10th, 2023 [December 10th, 2023]
- Ethereum's Evolution: From Smart Contracts to Web3 Wonders - Medium - December 10th, 2023 [December 10th, 2023]
- FAssets Could Unlock the Potential of $800B in XRP and Other Crypto Assets - The Crypto Basic - December 10th, 2023 [December 10th, 2023]
- Decentralized Autonomous Organization (DAO) | by SMC Research | Dec, 2023 - Medium - December 10th, 2023 [December 10th, 2023]
- Why ChatGPT Is The Next Revolution In Smart Contracts And ... - Blockchain Magazine - September 7th, 2023 [September 7th, 2023]
- Ethereum's Smart Contracts meet Bitcoin Spark: A Match Made in ... - Captain Altcoin - September 7th, 2023 [September 7th, 2023]
- Casper Network first Layer-1 blockchain to enable native smart ... - The Block - September 7th, 2023 [September 7th, 2023]
- Ethereum Virtual Machine (EVM) and How It Executes Smart Contracts - BTC Peers - September 7th, 2023 [September 7th, 2023]
- Building Smart Contracts on Cardano Using the Plutus Platform - BTC Peers - September 7th, 2023 [September 7th, 2023]
- VeChain And Vyvo Smart Chain Forge A Blockchain Partnership - Blockzeit - September 7th, 2023 [September 7th, 2023]
- How Decentralized Autonomous Organizations Can Transform the ... - BTC Peers - September 7th, 2023 [September 7th, 2023]
- Companies Transitioning to Decentralized Autonomous Organizations - BTC Peers - September 7th, 2023 [September 7th, 2023]
- Top Analyst States That 'ETH Killers' Are Vying for Second Place, but ... - Captain Altcoin - September 7th, 2023 [September 7th, 2023]
- Why 'Refi' Is a Tool in the $35tn Sustainable Investing Market - Techopedia - September 7th, 2023 [September 7th, 2023]
- Hoping to take advantage of Intel's ecosystem? Here's what to do - Crain's Cleveland Business - September 7th, 2023 [September 7th, 2023]
- The 3 Best Cryptos to Buy Now: September 2023 - InvestorPlace - September 7th, 2023 [September 7th, 2023]
- Cardano's Vision for Interoperability with Other Blockchains - BTC Peers - September 7th, 2023 [September 7th, 2023]
- OpenChat puts governance to the vote thanks to Internet Computer - TechHQ - September 7th, 2023 [September 7th, 2023]
- Is Bitcoin Better than Ethereum? - Watcher Guru - August 20th, 2023 [August 20th, 2023]
- How Bitcoin Spark is Poised to Outperform BNB in the Crypto Market - The Coin Republic - August 20th, 2023 [August 20th, 2023]
- Revolutionizing Digital Transactions: The Emergence of Bitcoin ... - Crypto News Flash - August 20th, 2023 [August 20th, 2023]
- Transforming Supply Chains With SoluLab's Cutting-Edge ... - CMSWire - August 20th, 2023 [August 20th, 2023]
- Top Cryptos to Invest in 2023 Featuring Bitcoin, Ethereum, and ... - Analytics Insight - August 20th, 2023 [August 20th, 2023]
- What Is a Reentrancy Attack and How Does It Work? - MUO - MakeUseOf - August 20th, 2023 [August 20th, 2023]
- Digital Supply Chains. The future of supply chain and business | by ... - Medium - August 20th, 2023 [August 20th, 2023]
- What is Injective Blockchain: A Comprehensive Guide | by Prateek ... - Medium - August 20th, 2023 [August 20th, 2023]
- Smart Contract Supremacy: A Riveting Exploration of Polkadot ... - Analytics Insight - July 30th, 2023 [July 30th, 2023]
- Smart Contracts Add to Flurry of Activity in Worlds of Cannabis and ... - Cannabis & Tech Today - July 30th, 2023 [July 30th, 2023]
- The Intersection of Blockchain and Energy Trading: Exploring Smart ... - EnergyPortal.eu - July 30th, 2023 [July 30th, 2023]
- The Story of Blockchain. Photo by Shubham Dhage on Unsplash ... - Medium - July 30th, 2023 [July 30th, 2023]
- Seda co-founders discuss intersection of oracles and multichain - Cointelegraph - July 30th, 2023 [July 30th, 2023]
- I Want To Buy My Groceries With Crypto So What's Stopping Me? - Entrepreneur - July 30th, 2023 [July 30th, 2023]