News

Wormhole rewarded $10 million to a white hat hacker who reported a bug

The Wormhole cross-chain bridge just spent $10 million on a white hat hacker who discovered a vulnerability in the product’s Ethereum smart contract in February.
An individual with the codename satya0x who discovered the vulnerability and received the Wormhole reward

According to an announcement from Immunefi (the bug bounty co-organizer with Wormhole), an individual with the code name satya0x is the one who discovered the vulnerability and received the aforementioned reward.

Wormhole unveiled the scheme in February, shortly after losing over $323 million in ETH to a hacker in one of the largest DeFi protocol attacks to date. Soon after, it refilled its blockchain bridge, promising the attacker $10 million in exchange for the funds.

Wormhole’s bug bounty program has different tiers, depending on the severity of the discovered vulnerability. Specifically, with a “low risk” level, a contract error can only bring in a reward of $2,500. Meanwhile, the reward that satya0x received is $10 million because the level of risk is at the system level.

Hacker satya0x said:

“I am proud to have played a role in mitigating a serious vulnerability and a systemic threat to the ecosystem.”

The Immunefi side stated that the user’s assets were still safe at the time the aforementioned bug was discovered. Soon after, Wormhole quickly deployed the update and patched it the same day.

“Wormhole is sending a clear message with this payout to the best, most talented whitehats on the planet that if they responsibly disclose security vulnerabilities to Wormhole, they’ll be well taken care of,” Immunefi said.

On its Twitter and medium pages, Immunefi also published a detailed report on the vulnerabilities in the aforementioned case.

The bug was related to Wormhole’s ability to upgrade smart contracts. Essentially, it could potentially allow a hacker to take control of those contracts. In a blog post, Immunefi provided a detailed breakdown of the issue that led to the security vulnerability and how it was fixed.

DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.

Join CoinCu Telegram to keep track of news: https://t.me/coincunews

Follow CoinCu Youtube Channel | Follow CoinCu Facebook page

Harold

CoinCu News

Harold

With a passion for untangling the complexities of the financial world, I've spent over four years in financial journalism, covering everything from traditional equities to the cutting edge of venture capital. "The financial markets are a fascinating puzzle," I often say, "and I love helping people make sense of them." That's what drives me to bring clear and insightful financial journalism to the readers of Coincu.

Recent Posts

Dogecoin Price Gets $5 Prediction, Shiba Inu To Rally 1,100%, And ETFSwap (ETFS) To Jump 135x

Here are the latest predictions for Dogecoin, Shiba Inu, and ETFswap.

4 hours ago

AVAX Hits $1B in DeFi, Cardano Expected to Surge—BlockDAG Leads with $110M Presale & 100% Bonus!

Discover BlockDAG's 100% bonus and $110M presale surge that’s sparking interest among crypto enthusiasts. Also,…

4 hours ago

Crypto Institutional Investors Move To ETFSwap (ETFS) Amid $500 Million Liquidity Injection Expectations

Discover why crypto investors are moving to ETFSwap (ETFS) as $500 million liquidity injection is…

7 hours ago

Buyers Rush to Maximise Gains with BlockDAG’s 100% Bonus Offer; Plus, ETH Holds Strong as Solana Challenges Rivals

Learn about BlockDAG's $110M presale achievement and the whopping 100% bonus offer, alongside Ethereum's growth…

9 hours ago

Thai Police Corruption Case Involving Officers and Extortion

Thai police corruption exposed as officers extort millions in USDT from a Chinese man under…

12 hours ago

SafePal Telegram Wallet Launches with Swiss Bank Accounts and CeDeFi

SafePal Telegram Wallet allows 950 million users to create compliant crypto-friendly Swiss bank accounts, integrating…

13 hours ago

This website uses cookies.