34 Thousand Vulnerabilities Are In Ethereum Smart Contracts

34 Thousand Vulnerabilities Are In Ethereum Smart Contracts

Currently, in the Ethereum blockchain, there are hundreds of thousands of smart contracts that manage wallets, tokens, applications or used to store funds. A group of British researchers alone was able to identify 34,200 vulnerable smart contracts, writes Motherboard .

The assistant professor from the University College London Ilya Sergey and his colleagues conducted a large-scale study to detect all possible vulnerabilities of smart contracts on the Ethereum blockchain. To do this, they downloaded the blockchain Ethereum, in effect creating its fork for personal use, and began to launch a variety of scenarios, trying to achieve undesirable consequences. When these consequences came, they marked a smart contract "with a tracked vulnerability."

Analyzing about a million smart contracts in this way, the researchers found that 34,200 of them contained critical vulnerabilities. They tested their assumptions on 3,000 smart contracts, and in 89% of cases they caused the most undesirable consequences. In theory, this could allow them to steal $ 6 million in Ethereum.

According to experts, early detection of vulnerabilities helps to prevent possible negative consequences. So, for example, in November 2017, a user under the pseudonym DevOps19 found a vulnerability in the code of the Ethereum-purity library Parity and accidentally blocked $ 150 million.

We are working with applications that have two very unpleasant features: they are used to manage your money, and they can not be fixed.

Attempts to find the creators of vulnerable, smart contracts were in vain. But since researchers do not say which vulnerabilities were discovered in smart contracts, they can be considered conditionally safe.

If someone wants to take advantage of our idea, he, at least, will have to do as much work as we did.

Information Source: Motherboard

Ethereum Foundation Confirms Upcoming ‘Istanbul’ Upgrade
On November 7th, Péter Szilágyi announced the date of the foundations impending upgrade, known as ‘Istanbul’. This upgrade will be the eighth hard...
Ethereum Devs Name The Date of Postponed Constantinople Fork
As it is known, on January 17 the Ethereum’s update Constantinople was supposed to be activated. However, this did not happen due to a vulnerability...
Ethereum Devs Postpone Constantinople Fork Due to a Vulnerability
Anticipated to occur on January 17, the long-awaited Ethereum’s Constantinople update has been delayed again. The cause is the recently found...
Ethereum Becomes Second Most Valuable Crypto Again
Ethereum has finally recovered and reclaimed its title of the second most valuable cyber-asset in the world after its elder brother bitcoin. Gaining...
Here’s When Ethereum’s Constantinople Hard Fork Will Happen
Constantinople hard fork will occur in the middle of January, a new agreement between Ethereum developers implies. Earlier it became known that the...
Ether Mining No Longer Profitable, Says Semiconductor Analyst
Mining ether at home is not lucrative any longer, particularly, when using kits with graphics processing units (GPUs). The latter is Nvidia's top...
Ethereum’s Lubin Says Blockchain Will Develop Longer Than Internet
Many crypto-experts have predicted that the enactment of DLT would be as revolutionary as the one of the World Wide Web. However, the situation with...
700 Households in Germany Benefit from Ethereum Energy Project
Cheaper energy due to the unaltered ledger is real. Lition, an Ethereum-based project, supplies 12 largest German cities with energy at a lower cost...
Why Ether Price Shorts Break the Record
On October 11 an immense selloff started on the cyber-asset market. Within a few days, the market lost around $19 billion in value, reaching the...
Ether’s to See Good Times, Bitcoin Bull Tom Lee Predicts
Bitcoin bull Thomas Lee has switched his attention to the second most popular cyber-coin ether. Lee, who is the head of research at Fundstrat Global...