0x DEX Protocol Suspended Because of Vulnerability, Funds Safe
Posted by sgtmarkets from the Business category at 14 Jul 2019 08:32:20 am.
Ethereum protocol (ETH) of the Decentralized Smart Exchange (DEX) 0x (ZRX) contract was suspended after a vulnerability was discovered in its code, the project team announced in a Medium article published on July 13 .
According to the announcement, security specialist Samczsun warned the team 0x of the vulnerability of the smart swap contract and, after evaluating it, suspended it.
This vulnerability would have allowed an attacker to place certain commands with invalid signatures. The announcement reassures that we have exploited this vulnerability and that no user has lost its funds. The only consequence is apparently a temporary suspension of service:
"Unfortunately, this also means that currently deployed 0x contracts can not process transactions and can not be used. A corrected version of the Exchange contract - we are certain of this, fixes this vulnerability - and new AssetProxy contracts are being deployed on the Ethernet network, and we hope they will be ready for use later that evening. "
Finally, the team notes that the vulnerability does not appear in its ZRX token agreement and that user funds are secure. They thanked the security researchers while inviting other hackers to participate in the Bounty Bounty 0xB program:
"We also wish to express our sincere gratitude to samczsun. We continue to offer a generous bugs bonus to hackers and community members who identify potential vulnerabilities. "
As Cointelegraph mentioned last October, ZRX was the first ERC20 token on the Coinbase Cryptocurrency Exchange.
In early May, the Tron Foundation revealed a corrected vulnerability that could have crashed its blockchain. Source