Back to top
  • 공유 Share
  • 인쇄 Print
  • 글자크기 Font size
URL copied.

CertiK Uncovers Critical Bug in Sui Network, Averts Potential Disaster

작성자 이미지
Marthon Guanzon reporter

Wed, 21 Jun 2023, 03:11 am UTC

Sui Foundation Expresses Gratitude as "HamsterWheel" Attack is Thwarted

The innovative audit firm, CertiK, recently unveiled a potentially catastrophic bug lurking within the Sui network, preventing a potential disaster. In recognition of the significance of this finding, the Sui Foundation rewarded CertiK with a substantial $500,000 award.

Delving into the technical details, the flaw identified was an "infinite loop bug," a malicious code that could send the blockchain's nodes into an endless cycle, effectively freezing the network. Termed the "HamsterWheel" attack, this code had the capacity to trap nodes in perpetual action, rendering them incapable of processing new transactions.

What sets the HamsterWheel bug apart is its objective not merely to crash nodes and disable networks, but to immobilize them entirely by ensnaring nodes in an unceasing state of operation, rendering them ineffective.

Upon flagging the bug, the Sui Foundation swiftly responded by mobilizing a team of developers to address the threat. Two crucial countermeasures were promptly implemented, successfully rolled out as confirmed by CertiK. Furthermore, CertiK pledged to provide a comprehensive technical report, outlining the bug and the protective measures employed.

Darius Goore, the chief communicator at the Sui Foundation, expressed relief to CoinDesk, highlighting that the timely detection and resolution of the bug, prior to the launch of the Sui network, were the outcomes of an effective bug bounty program, diligent third-party audits, and rigorous internal testing.

Kang Li, CertiK's chief security officer, emphasized that the revelation of the HamsterWheel bug serves as a stark reminder of the evolving complexity and sophistication of threats faced by blockchain networks.

The Sui Foundation extends its appreciation to CertiK for not only identifying a potentially disastrous bug but also effectively rectifying it before any compromise could befall the Sui network.

TokenPost | [email protected]

<Copyright ⓒ TokenPost, unauthorized reproduction and redistribution prohibited>

Most Popular

Comment 0

0/1000

1