bitcoin
Bitcoin (BTC) $ 106,329.49
ethereum
Ethereum (ETH) $ 4,007.04
tether
Tether (USDT) $ 1.01
bnb
BNB (BNB) $ 728.43
xrp
XRP (XRP) $ 2.48
cardano
Cardano (ADA) $ 1.11
usd-coin
USDC (USDC) $ 1.01
matic-network
Polygon (MATIC) $ 0.622549
binance-usd
BUSD (BUSD) $ 1.01
dogecoin
Dogecoin (DOGE) $ 0.411923
okb
OKB (OKB) $ 54.92
polkadot
Polkadot (DOT) $ 9.17
shiba-inu
Shiba Inu (SHIB) $ 0.000028
tron
TRON (TRX) $ 0.289614
uniswap
Uniswap (UNI) $ 17.16
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 105,459.26
dai
Dai (DAI) $ 1.01
litecoin
Litecoin (LTC) $ 122.74
staked-ether
Lido Staked Ether (STETH) $ 4,000.92
solana
Solana (SOL) $ 227.08
avalanche-2
Avalanche (AVAX) $ 51.51
chainlink
Chainlink (LINK) $ 29.33
cosmos
Cosmos Hub (ATOM) $ 9.22
the-open-network
Toncoin (TON) $ 6.48
ethereum-classic
Ethereum Classic (ETC) $ 34.19
leo-token
LEO Token (LEO) $ 9.44
filecoin
Filecoin (FIL) $ 6.83
bitcoin-cash
Bitcoin Cash (BCH) $ 555.88
monero
Monero (XMR) $ 223.60
Monday, December 16, 2024
spot_img
bitcoin
Bitcoin (BTC) $ 106,329.49
ethereum
Ethereum (ETH) $ 4,007.04
tether
Tether (USDT) $ 1.01
bnb
BNB (BNB) $ 728.43
usd-coin
USDC (USDC) $ 1.01
xrp
XRP (XRP) $ 2.48
binance-usd
BUSD (BUSD) $ 1.01
dogecoin
Dogecoin (DOGE) $ 0.411923
cardano
Cardano (ADA) $ 1.11
solana
Solana (SOL) $ 227.08
matic-network
Polygon (MATIC) $ 0.622549
polkadot
Polkadot (DOT) $ 9.17
tron
TRON (TRX) $ 0.289614
HomeCryptoBitcoinOne other Lightning Community bug put customers’ bitcoin in danger

One other Lightning Community bug put customers’ bitcoin in danger

Bitcoin’s hottest layer 2, the Lightning Community, had one other bug that put customers’ funds in danger. Lightning scales quicker and cheaper than common bitcoin transactions by permitting customers to affix fee channels, therein conducting off-blockchain, ‘bar tab’-like transactions.

By jotting down will increase and reduces in bitcoin balances inside these fee channels, Lightning customers ‘ship’ and ‘obtain’ bitcoin quicker and cheaper than paying miners for the complete safety and decentralization of on-blockchain transactions.

Nevertheless, the trade-off for this pace and affordability is obvious on this week’s disclosure: safety.

LND, one of many 4 hottest implementations of Lightning, is now in model 18 but has disclosed a vulnerability affecting variations previous to 17. (Lightning builders waited roughly 9 months to reveal the bug, as a precaution.)

They named the bug the LND Onion Bomb.

LND Onion Bomb

The vulnerability is a basic denial of service (DoS) assault. Particularly, attackers can overwhelm LND nodes with onion information packets, utilizing up the entire node’s RAM and taking the node offline.

Worse, the assault is Tor/Onion-based, so it’s non-public by default. The id of the assailant stays non-public all through the prolonged assault, making it tough.

Learn extra: Critics declare ‘buggy’ Bitcoin Lightning Community is slowly dying

Going offline isn’t problematic for a daily Bitcoin full node, nevertheless it’s very unhealthy information for a Lightning node. Offline Lightning nodes might not validate or obtain funds, can not surveil the community for dishonest, and are weak to pressured channel closures whereby a counterparty steals all remaining funds within the fee channel.

If the attacker continues DoS’ing the victimized node operator for lengthy sufficient, the time interval for broadcasting a Justice Transaction expires and irrevocably transfers possession of the stolen bounty to the attacker.

A accountable Lightning bug disclosure

To this point, there aren’t any main studies of funds stolen from this so-called ‘LND Onion Bomb’ assault. A developer responsibly disclosed it to Lightning Labs on June 20, 2023 and builders patched the exploit by October 3, of that very same yr with Lightning node software program launch LND 17.0.

Two days in the past — 9 months after the patch — builders publicly disclosed the problem.

It’s not the primary time the Lightning community has suffered a severe vulnerability that positioned customers’ funds in danger. Through the years, hackers discovered a jamming assault, alternative biking assault, BTCD library bug, unattributed fee routes, LNTXbot breach, and varied different bugs in Lightning implementations.

One other Lightning Community bug put customers’ bitcoin in danger

RELATED ARTICLES

Most Popular