153k Ether Stolen in Parity Multi-Sig Attack

943 pointsby campbelltownalmost 8 years ago

60 comments

int_19halmost 8 years ago

Just skimming through the Solidity docs, I see a lot of unwise decisions there aside from the weird visibility defaults.All state is mutable by default (this includes struct fields, array elements, and locals). Functions can mutate state by default. Both are overridable by explicit specifiers, much like C++ "const", but you have to remember to do so. Even then, the current implementation doesn't enforce this for functions.Integers are fixed-size and wrap around, so it's possible to have overflow and underflow bugs. Granted, with 256 bits of precision by default that's harder to do than usual... but still pretty easy if you e.g. do arithmetic on two inputs.Operators have different semantics depending on whether the operands are literals or not. For example, 1/2 is 0.5, but x/y for x==1 and y==2 is 0. Precision of the operation is also determined in this manner - literals are arbitrary-precision, other values are constrained by their types.Copy is by reference or by value depending on where the operands are stored. This is implicit - the operation looks exactly the same in code, so unless you look at declarations, you don't know what it actually does. Because mutability is pervasive, this can can have far-reaching effects.Map data type doesn't throw on non-existing keys, it just returns the default value.The language has suffixes for literals to denote various units (e.g. "10 seconds" or "1000 ether"). This is purely syntactic sugar, however, and is not reflected in the type system in any way, so "10 second + 1000 ether" is valid code.Statements allow, but do not require, braces around bodies. This means that dangling "else" is potentially an issue, as is anything else from the same class of bugs (such as the infamous Apple "goto fail" bug).Functions can be called recursively with no special effort, but the stack size is rather limited, and it looks like there are no tail calls. So there's the whole class of bugs where recursion depth is defined by contract inputs.Order of evaluation is not defined for expressions. This in a language that has value-returning mutating operators like ++!Scoping rules are inherited from JS, meaning that you can declare variables inside blocks, but their scope is always the enclosing function. This is more of an annoyance than a real problem, because they don't have closures, which is where JS makes it very easy to shoot yourself in the foot with this approach to scoping.

评论 #14810090 未加载

评论 #14811300 未加载

评论 #14811313 未加载

评论 #14814988 未加载

评论 #14810094 未加载

评论 #14810086 未加载

评论 #14810175 未加载

评论 #14814105 未加载

评论 #14810642 未加载

评论 #14810886 未加载

评论 #14812218 未加载

评论 #14810082 未加载

评论 #14819248 未加载

评论 #14818656 未加载

评论 #14814848 未加载

评论 #14810204 未加载

评论 #14811582 未加载

earlzalmost 8 years ago

Here's the root error I believe: <a href="https://github.com/paritytech/parity/blob/master/js/src/contracts/snippets/enhanced-wallet.sol#L216" rel="nofollow">https://github.com/paritytech/parity/blob/master/js/src/cont...</a>The initWallet function should have been marked internal, but was instead not marked. Unmarked functions default to public in Solidity, so anyone can call that function and reinitialize the wallet to be under their control

评论 #14809172 未加载

评论 #14807994 未加载

评论 #14808632 未加载

评论 #14808046 未加载

评论 #14808037 未加载

评论 #14808000 未加载

评论 #14808026 未加载

评论 #14808060 未加载

评论 #14808047 未加载

评论 #14808837 未加载

评论 #14808135 未加载

评论 #14809987 未加载

评论 #14809954 未加载

评论 #14810412 未加载

评论 #14809784 未加载

评论 #14808157 未加载

finnhalmost 8 years ago

I've posted this before [0], but it's still apropos regarding the foolishness that is Ethereum.[Ethereum] only makes sense if all of the following obtain:(a) the code is 100% bug-free (b/c accidents cannot be rewound)(b) all code-writers are 100% honest (their code does what they say)(c) all contract participants are 100% perfect code readers (so as to not enter into fraudulent contracts)(Strictly speaking, only one of (b) and (c) needs to be true).None of these conditions will ever obtain.[0] <a href="https://news.ycombinator.com/item?id=14471465" rel="nofollow">https://news.ycombinator.com/item?id=14471465</a>

评论 #14807930 未加载

评论 #14808136 未加载

评论 #14807991 未加载

评论 #14808494 未加载

评论 #14811562 未加载

评论 #14810559 未加载

评论 #14808076 未加载

评论 #14807973 未加载

aresantalmost 8 years ago

From the post mortem (1) -=>- A hacker managed to exploit a ICO multisig wallet vulnerability and drain 44,055 ETH - $9,119,385 at present.- A white hat showed up and "saved" 377,000 ETH - $78,039,000 !!! - by draining other accounts.I get the "see cryptos are too insecure / it's a pyramid / it's a bubble / ICOs are scams / etc" arguments.But holy shit turning a world currency into the wild west - for better or worse - is going to be disruptive, period.That $10m out the window is like a Series A for a nefarious hacker with deep crypto skills, what does this success embolden or create?I can only imagine the debacles that we have to look forward to, and I say that in full support of and as a long term believer in both blockchain and cryptocurrencies.(1) <a href="https://press.swarm.city/parity-multisig-wallet-exploit-hits-swarm-city-funds-statement-by-the-swarm-city-core-team-d1f3929b4e4e" rel="nofollow">https://press.swarm.city/parity-multisig-wallet-exploit-hits...</a>

评论 #14810274 未加载

评论 #14808536 未加载

doeneralmost 8 years ago

"my favorite part of this latest ICO hack is that it appears to have gone to same wallet as the dao hack ....."<a href="https://mobile.twitter.com/IamNomad/status/887776981777092613?ref_src=twsrc%5Etfw&ref_url=https%3A%2F%2Fredcursor.net%2F" rel="nofollow">https://mobile.twitter.com/IamNomad/status/88777698177709261...</a>"incredible plot twist: whitehat hacker supposedly saved most tokens from being stolen using the same vuln."<a href="https://mobile.twitter.com/bcrypt/status/887775417406431232?ref_src=twsrc%5Etfw&ref_url=https%3A%2F%2Fredcursor.net%2F" rel="nofollow">https://mobile.twitter.com/bcrypt/status/887775417406431232?...</a>"Multisig wallets affected by this hack: - Edgeless Casino (@edgelessproject) - Swarm City (@swarmcitydapp) - æternity blockchain (@aetrnty)"<a href="https://mobile.twitter.com/maraoz/status/887755889897295872?ref_src=twsrc%5Etfw&ref_url=https%3A%2F%2Fredcursor.net%2F" rel="nofollow">https://mobile.twitter.com/maraoz/status/887755889897295872?...</a>

评论 #14808277 未加载

cl0rksteralmost 8 years ago

A much more useful explanation: <a href="https://press.swarm.city/parity-multisig-wallet-exploit-hits-swarm-city-funds-statement-by-the-swarm-city-core-team-d1f3929b4e4e" rel="nofollow">https://press.swarm.city/parity-multisig-wallet-exploit-hits...</a>

评论 #14808023 未加载

评论 #14808084 未加载

ericbalmost 8 years ago

As Charlie Lee said:If the creator of Solidity, Gavin Wood, cannot write a secure multisig wallet in Solidity, pretty much confirms Ethereum is hacker paradise.<a href="https://twitter.com/SatoshiLite/status/887781929726038016" rel="nofollow">https://twitter.com/SatoshiLite/status/887781929726038016</a>

评论 #14810631 未加载

评论 #14811419 未加载

joshschreuderalmost 8 years ago

Let's play hypotheticals.If you were the attacker and you now have the ETH in your wallet, how do you cash out without anyone identifying you and maximising your profits?Also has the attacker broken a law by exploiting a bug in the contract?

评论 #14811181 未加载

评论 #14808151 未加载

评论 #14808164 未加载

评论 #14809248 未加载

评论 #14808104 未加载

评论 #14808592 未加载

评论 #14808119 未加载

评论 #14811139 未加载

评论 #14808684 未加载

notsofastbuddyalmost 8 years ago

Parity shipped with a built-in Solidity contract to implement multi-sig wallets. That contract had a vulnerability that is now being exploited.Importantly, the contract is not part of the Ethereum protocol, so other implementations and non-multi-sig Parity wallets are safe.

评论 #14809328 未加载

sna1lalmost 8 years ago

<a href="https://etherscan.io/address/0x1dba1131000664b884a1ba238464159892252d3a" rel="nofollow">https://etherscan.io/address/0x1dba1131000664b884a1ba2384641...</a> -- white hat group exploited the vuln and are holding people's crypto for them.

评论 #14808068 未加载

matt_wulfeckalmost 8 years ago

I'm sure they'll just hard fork again. And nobody cares because ethereum isn't actually being used for anything real, just a bunch of enthusiasts trying to get rich.

评论 #14808421 未加载

评论 #14808223 未加载

pietrofmaggialmost 8 years ago

This is the most useful explanation I've found about the vulnerability so far: <a href="https://blog.zeppelin.solutions/on-the-parity-wallet-multisig-hack-405a8c12e8f7" rel="nofollow">https://blog.zeppelin.solutions/on-the-parity-wallet-multisi...</a>The explanation is a bit scary about what actually ended up in parity code:The wallet contract forwards all unmatched function calls to the library using delegate call... This causes all public functions from the library to be callable by anyone, including initWallet, which can change the contract’s owners.Edit: formatting

icelanceralmost 8 years ago

Black hat hackers nabbed $31MM in ETH. Not a bad payday due to a coding error.<a href="https://etherscan.io/address/0xb3764761e297d6f121e79c32a65829cd1ddb4d32" rel="nofollow">https://etherscan.io/address/0xb3764761e297d6f121e79c32a6582...</a>

评论 #14808127 未加载

lawrenceyanalmost 8 years ago

Silver lining: <a href="https://etherscan.io/address/0x1dba1131000664b884a1ba238464159892252d3a" rel="nofollow">https://etherscan.io/address/0x1dba1131000664b884a1ba2384641...</a>Looks like about +300,000 ether was able to be drained before it could be stolen thanks to a white hat group.

评论 #14808812 未加载

djhworldalmost 8 years ago

On the parity website they state the following> Every single line in our codebase is fully reviewed by at least one expert developer (and routinely two or more) before being placed in the main repository. We strive for excellence; static code checking is used on every compile to cut out bad idioms. Style is enforced before any alteration may be made to the main repository. Continuous integration guarantees our codebase always compiles and tests always pass.

评论 #14826888 未加载

dvccalmost 8 years ago

Can someone explain how immutable contracts get updated? From what I understand you can have one contract forward requests to another, and you can use some storage in the forwarding contract to determine the real target contract. But why would someone participate in a contract that is mutable?I guess I am just wondering how this contract can be updated, given its on the blockchain and considered immutable.

评论 #14808436 未加载

评论 #14809380 未加载

nkriscalmost 8 years ago

Just thinking hypothetically here as a coin novice: could a bug like this theoretically have been implemented intentionally? If the code is the law, and the code is sufficiently complex, couldn't it be feasible to dupe people?

评论 #14808644 未加载

评论 #14809710 未加载

swamp40almost 8 years ago

The begging in the comments section, along with their wallet ID's, looks like a glimpse of the internet 100 years into the future.

o-almost 8 years ago

I believe from looking at the fix [0] I was able to trace back the origin of the bug. This is my (unverified) theory. Can anybody familiar with serpent confirm?There is a catch-all [1] function in the public API (why???) of the wallet contract which uses delegatecall to delegate to the library class."In a similar way, the function delegatecall can be used: the difference is that only the code of the given address is used, all other aspects (storage, balance, ...) are taken from the current contract." [2] (again, WHY???)So calling through this catch-all function the "internal" modifier on "initMultiowned" does apparently not prevent it from being called, since the delegation happens from a function inside Wallet.So the "attack" is to just tell the wallet to reset its owners to myself. This would be so embarrassingly trivial, that it's more like picking the money up from the floor, than a "heist".This wallet contract is insane and the programming language too. Why would a language for such a critical application have such super unsafe constructs? This can't be true. Please, serpent community, talk to your local PL people![0] <a href="https://github.com/paritytech/parity/pull/6103/files" rel="nofollow">https://github.com/paritytech/parity/pull/6103/files</a> [1] <a href="https://github.com/paritytech/parity/blob/02d462e2636f1898df3e7556364260c594b112e6/js/src/contracts/snippets/enhanced-wallet.sol#L426" rel="nofollow">https://github.com/paritytech/parity/blob/02d462e2636f1898df...</a> [2] <a href="https://solidity.readthedocs.io/en/develop/types.html#address" rel="nofollow">https://solidity.readthedocs.io/en/develop/types.html#addres...</a> [3] <a href="https://github.com/paritytech/parity/blob/02d462e2636f1898df3e7556364260c594b112e6/js/src/contracts/snippets/enhanced-wallet.sol#L107" rel="nofollow">https://github.com/paritytech/parity/blob/02d462e2636f1898df...</a>

jonduboisalmost 8 years ago

The problem with Ethereum is that it's just way too complex. The more complex something is, the more bugs and vulnerabilities there are going to be.

niahmiahalmost 8 years ago

Let me guess... another hard fork to undo this.

评论 #14808056 未加载

评论 #14811236 未加载

评论 #14807877 未加载

评论 #14807896 未加载

ericbalmost 8 years ago

No rollback this time. The chain with this hack must have the longer Proof-Of-Vitalik.<a href="https://twitter.com/VitalikButerin/status/887782650026631168" rel="nofollow">https://twitter.com/VitalikButerin/status/887782650026631168</a>

theptipalmost 8 years ago

Can someone explain to me why you would want a smart contract for multi-sig? This is a feature that can be implemented easily off-chain, i.e. using split keys (Bitcoin has had this approach for some time).Seems like having this complex logic on-chain is asking for it to be exploited.

tudorwalmost 8 years ago

Entropy, not something you want from a currency, also, paper money is not magic, it's a network of trust. I think block chain applications are out there, I just don't think cryptographic currencies are their best use.

abhi3almost 8 years ago

For some context: <a href="http://www.coindesk.com/30-million-ether-reported-stolen-parity-wallet-breach/" rel="nofollow">http://www.coindesk.com/30-million-ether-reported-stolen-par...</a>

e79almost 8 years ago

The vulnerability was extremely simple, as suggested by the three keyword-long patch. I've written about this and other Solidity/EVM bugs from a technical perspective, if anybody is curious:- <a href="https://ericrafaloff.com/parity-multi-sig-contract-vulnerability/" rel="nofollow">https://ericrafaloff.com/parity-multi-sig-contract-vulnerabi...</a>- <a href="https://ericrafaloff.com/analyzing-the-erc20-short-address-attack/" rel="nofollow">https://ericrafaloff.com/analyzing-the-erc20-short-address-a...</a>I think at least a big part of the solution to these security problems is two-fold:- More secure conventions. All of the gotchas in Solidity make for a bad time. Even non-security bugs create a bad developer experience. Opting into private functions by default- More code review. Engineers need to be diligent or hire security professionals who are (I'm one).

ericfrederichalmost 8 years ago

Is this even illegal? Or just frowned upon? It seems this is just one big game, you find the weakness and you profit.

评论 #14815088 未加载

rboydalmost 8 years ago

you can see that this is also effecting tokens. check the whitehat effort (Token Transfers / View Token Balances) on this wallet <a href="https://etherscan.io/address/0x1dba1131000664b884a1ba238464159892252d3a#tokentxns" rel="nofollow">https://etherscan.io/address/0x1dba1131000664b884a1ba2384641...</a>.$30M worth of BAT, $26M ICONOMI, $17M CFI, $1.4M EOShistoric episode here which is sure to spur many a conversation about what disclosure means in the blockchain era.

redmalmost 8 years ago

The blog announcement from Parity:<a href="https://blog.parity.io/security-alert-high-2/" rel="nofollow">https://blog.parity.io/security-alert-high-2/</a>

ericbalmost 8 years ago

Things like this are why I think Tezos, when/if it comes out, has a bright future. I want a formal proof for any contract I use with real-money.

评论 #14813695 未加载

jamespittsalmost 8 years ago

Helpful information for users potentially affected by this issue:- The vulnerability is in Parity's "enhanced" multi-sig contract- This affects Parity 1.5 and later- Parity 1.5 was released on January 19, 2017 (have you created multi-sigs in Parity since then?)- The canonical multi-sig contract used in Mist / Ethereum Wallet does NOT have this vulnerability- 0x1db is a community "white hat" sweep effort and not an attacker (See: <a href="https://etherscan.io/address/0x1dba1131000664b884a1ba238464159892252d3a" rel="nofollow">https://etherscan.io/address/0x1dba1131000664b884a1ba2384641...</a> )

codewizalmost 8 years ago

The bug in the wallet contract was fixed one hour ago with this commit: <a href="https://github.com/paritytech/parity/pull/6102/files/e06a1e8dd9cfd8bf5d87d24b11aee0e8f6ff9aeb" rel="nofollow">https://github.com/paritytech/parity/pull/6102/files/e06a1e8...</a>Parity bug: <a href="https://github.com/paritytech/parity/pull/6102" rel="nofollow">https://github.com/paritytech/parity/pull/6102</a>

okreallywtfalmost 8 years ago

In reading the comments I had forgotten what DSL stood for and had to look it up and it usually means something other than intended here, to save anyone else the trouble its Domain Specific Language.<a href="https://en.wikipedia.org/wiki/Domain-specific_language" rel="nofollow">https://en.wikipedia.org/wiki/Domain-specific_language</a>

kenseyalmost 8 years ago

The great thing about reading this comment thread is that I basically already read it a couple of weeks ago, because a friend of mine (David Gerard, of Wikipedia, RationalWiki and Rocknerd Internet fame) let me preview his forthcoming e-book _Attack of the 50-Foot Blockchain_. There's a whole section in there about smart contracts, Ethereum, and The DAO that goes over much of what commenters here have mentioned ("non-reversibility, till it's our money at stake", the requirement that everyone write and read code perfectly, the problems with the very idea of immutability in contracts, etc.)If people are interested, it's on Amazon: <a href="http://amzn.to/2trOjJS" rel="nofollow">http://amzn.to/2trOjJS</a> (I have no financial interest in it, but I bet a lot of people in this thread would enjoy reading it and/or writing long diatribes on why he is wrong about everything in it.)

评论 #14808915 未加载

abhi3almost 8 years ago

That's like 30 Million USD at current prices? This is close to the DAO hack in USD value, not another fork now surely?

评论 #14807875 未加载

评论 #14807898 未加载

评论 #14807953 未加载

redmalmost 8 years ago

I'm not sure why everyone is piling on Solidity. At the end of the day, bugs happen in all languages, to all programmers eventually, and if you want to point the finger, it has to be at Parity.If anything, it shows there needs to be a better process for peer review and some defaults in Solidity should be changed for security.

评论 #14812883 未加载

coinmealmost 8 years ago

Better techniques are required. Solidity is clearly not ready to be used to secure billions of dollars that can be anonymously stolen in an instant. Fuzz testing should be an absolute minimum. Formal proofs, and a simpler language should be the ultimate goal.Hopefully the ethereum foundation takes note because this problem is not going away, and they are responsible for 20B$ market cap of value. I realise that ethereum is still young but they have chosen to build a product that can be used in a multitude of ways without enough thought about how to keep the value secure. I wouldn't even know where to start when deciding whether it's safe to use a smart contract, and I understand the concepts well. If ethereum is ever going to grow into it's current market cap if will have to be safer for use by everybody.

ateevchopraalmost 8 years ago

77 Million were rescued by the white hackers and stored.<a href="https://etherscan.io/address/0x1dba1131000664b884a1ba238464159892252d3a" rel="nofollow">https://etherscan.io/address/0x1dba1131000664b884a1ba2384641...</a>

samstavealmost 8 years ago

Forgive me for being harsh:Why is there no "pen-test" phase to any crytocurrency which hits the market.So, let me understand; you're ostensibly smart enough to (perhaps as a body of contributors, even) develop a cryptocurrency offering - yet youre also fucking stupid enough to not have same/wider network of ppl attempt to hack the fuck out of your plan?Does this already occur? or some savant comes and owns them?We have fucking HIPPA FFS and the compliance systems for something as trivial as my stupid name.so; ELI5: WTF are currencies doing/not-doing which allow for such hacks (1) and allow for exploits to go unseen (2)

评论 #14807966 未加载

评论 #14808003 未加载

评论 #14807984 未加载

rjurneyalmost 8 years ago

I can't even understand what you are all talking about. Crazy kids. I'm not even kidding. Usually I can figure out what the topic of conversation is if I'm not familiar with it, but in this case I'm like three degrees removed from comprehension.Sounds like this is all probably dot com bullshit, but maybe something genius will come out of it that is unforeseen now.

curiousgalalmost 8 years ago

Maybe it was a feature not a bug.

likeclockworkalmost 8 years ago

If the code of the contract IS the contract, how was anything 'stolen'?

rocky1138almost 8 years ago

How do we know this is stolen? The link doesn't provide much detail.

评论 #14807985 未加载

6nfalmost 8 years ago

Time for another hard fork!

campbelltownalmost 8 years ago

It appears the hacker has begun moving ether from the account. The number presented in this link will no longer match the amount in the title. There is currently 83K ether remaining.

viachalmost 8 years ago

Looks like a good motivation to start learning Solidity.

codewizalmost 8 years ago

Can someone ELI5?I use Parity, I have a wallet contract deployed, it's night and I'm wearing sunglasses.

评论 #14807886 未加载

评论 #14807891 未加载

hohenheimalmost 8 years ago

I wonder, why the black hat didn't drain all the money and left it for the white hat group?

评论 #14811070 未加载

kevinwangalmost 8 years ago

Can anyone explain? Don't know what I'm looking at.

评论 #14807909 未加载

sparky_almost 8 years ago

Didn't they fork the project a while ago due to theft?

joeblaualmost 8 years ago

It's being put back: <a href="https://news.ycombinator.com/item?id=14811534" rel="nofollow">https://news.ycombinator.com/item?id=14811534</a>Edit: Without Vitalik or a hard fork.

davidwalmost 8 years ago

I miss patio11's posts on these things.

评论 #14809335 未加载

tbarbuglialmost 8 years ago

how much money is that?

评论 #14808200 未加载

评论 #14808160 未加载

thecrazyonealmost 8 years ago

the link seems to be down. Did we DDoS it ?

mtgxalmost 8 years ago

So will the devs create another Ethereum fork to recover this money?

评论 #14811147 未加载

draw_downalmost 8 years ago

It's "cynical" to point out these problems will keep happening, but then they keep happening. So, not much to say.

评论 #14809120 未加载

imronalmost 8 years ago

Don't worry, they can just do another hard fork and get the money back, amirite?

qwertyuiop85almost 8 years ago

0x2ee4899d44F086e8ee974399f404214de33F9b68 Please donate, I'll go full time auditing code from now on. WHG member.

WhatsNamealmost 8 years ago

<a href="https://cryptowat.ch/kraken/ethusd" rel="nofollow">https://cryptowat.ch/kraken/ethusd</a>

评论 #14807941 未加载

qwertyuiop85almost 8 years ago

0x2ee4899d44F086e8ee974399f404214de33F9b68 Please donate, I'm going full bug hunting from today on your behalf. WHG dev. S.

60 comments

int_19halmost 8 years ago

评论 #14810090 未加载

评论 #14811300 未加载

评论 #14811313 未加载

评论 #14814988 未加载

评论 #14810094 未加载

评论 #14810086 未加载

评论 #14810175 未加载

评论 #14814105 未加载

评论 #14810642 未加载

评论 #14810886 未加载

评论 #14812218 未加载

评论 #14810082 未加载

评论 #14819248 未加载

评论 #14818656 未加载

评论 #14814848 未加载

评论 #14810204 未加载

评论 #14811582 未加载

earlzalmost 8 years ago

评论 #14809172 未加载

评论 #14807994 未加载

评论 #14808632 未加载

评论 #14808046 未加载

评论 #14808037 未加载

评论 #14808000 未加载

评论 #14808026 未加载

评论 #14808060 未加载

评论 #14808047 未加载

评论 #14808837 未加载

评论 #14808135 未加载

评论 #14809987 未加载

评论 #14809954 未加载

评论 #14810412 未加载

评论 #14809784 未加载

评论 #14808157 未加载

finnhalmost 8 years ago

评论 #14807930 未加载

评论 #14808136 未加载

评论 #14807991 未加载

评论 #14808494 未加载

评论 #14811562 未加载

评论 #14810559 未加载

评论 #14808076 未加载

评论 #14807973 未加载

aresantalmost 8 years ago

评论 #14810274 未加载

评论 #14808536 未加载

doeneralmost 8 years ago

评论 #14808277 未加载

cl0rksteralmost 8 years ago

评论 #14808023 未加载

评论 #14808084 未加载

ericbalmost 8 years ago

评论 #14810631 未加载

评论 #14811419 未加载

joshschreuderalmost 8 years ago

评论 #14811181 未加载

评论 #14808151 未加载

评论 #14808164 未加载

评论 #14809248 未加载

评论 #14808104 未加载

评论 #14808592 未加载

评论 #14808119 未加载

评论 #14811139 未加载

评论 #14808684 未加载

notsofastbuddyalmost 8 years ago

评论 #14809328 未加载

sna1lalmost 8 years ago

评论 #14808068 未加载

matt_wulfeckalmost 8 years ago

I'm sure they'll just hard fork again. And nobody cares because ethereum isn't actually being used for anything real, just a bunch of enthusiasts trying to get rich.

评论 #14808421 未加载

评论 #14808223 未加载

pietrofmaggialmost 8 years ago

icelanceralmost 8 years ago

评论 #14808127 未加载

lawrenceyanalmost 8 years ago

评论 #14808812 未加载

djhworldalmost 8 years ago

评论 #14826888 未加载

dvccalmost 8 years ago

评论 #14808436 未加载

评论 #14809380 未加载

nkriscalmost 8 years ago

评论 #14808644 未加载

评论 #14809710 未加载

swamp40almost 8 years ago

The begging in the comments section, along with their wallet ID's, looks like a glimpse of the internet 100 years into the future.

o-almost 8 years ago

jonduboisalmost 8 years ago

The problem with Ethereum is that it's just way too complex. The more complex something is, the more bugs and vulnerabilities there are going to be.

niahmiahalmost 8 years ago

Let me guess... another hard fork to undo this.

评论 #14808056 未加载

评论 #14811236 未加载

评论 #14807877 未加载

评论 #14807896 未加载

ericbalmost 8 years ago

theptipalmost 8 years ago

tudorwalmost 8 years ago

abhi3almost 8 years ago

For some context: <a href="http://www.coindesk.com/30-million-ether-reported-stolen-parity-wallet-breach/" rel="nofollow">http://www.coindesk.com/30-million-ether-reported-stolen-par...</a>

e79almost 8 years ago

ericfrederichalmost 8 years ago

Is this even illegal? Or just frowned upon? It seems this is just one big game, you find the weakness and you profit.

评论 #14815088 未加载

rboydalmost 8 years ago

redmalmost 8 years ago

The blog announcement from Parity:<a href="https://blog.parity.io/security-alert-high-2/" rel="nofollow">https://blog.parity.io/security-alert-high-2/</a>

ericbalmost 8 years ago

Things like this are why I think Tezos, when/if it comes out, has a bright future. I want a formal proof for any contract I use with real-money.

评论 #14813695 未加载

jamespittsalmost 8 years ago

codewizalmost 8 years ago

okreallywtfalmost 8 years ago

kenseyalmost 8 years ago

评论 #14808915 未加载

abhi3almost 8 years ago

That's like 30 Million USD at current prices? This is close to the DAO hack in USD value, not another fork now surely?

评论 #14807875 未加载

评论 #14807898 未加载

评论 #14807953 未加载

redmalmost 8 years ago

评论 #14812883 未加载

coinmealmost 8 years ago

ateevchopraalmost 8 years ago

samstavealmost 8 years ago

评论 #14807966 未加载

评论 #14808003 未加载

评论 #14807984 未加载

rjurneyalmost 8 years ago

curiousgalalmost 8 years ago

Maybe it was a feature not a bug.

likeclockworkalmost 8 years ago

If the code of the contract IS the contract, how was anything 'stolen'?

rocky1138almost 8 years ago

How do we know this is stolen? The link doesn't provide much detail.

评论 #14807985 未加载

6nfalmost 8 years ago

Time for another hard fork!

campbelltownalmost 8 years ago

It appears the hacker has begun moving ether from the account. The number presented in this link will no longer match the amount in the title. There is currently 83K ether remaining.

viachalmost 8 years ago

Looks like a good motivation to start learning Solidity.

codewizalmost 8 years ago

Can someone ELI5?I use Parity, I have a wallet contract deployed, it's night and I'm wearing sunglasses.

评论 #14807886 未加载

评论 #14807891 未加载

hohenheimalmost 8 years ago

I wonder, why the black hat didn't drain all the money and left it for the white hat group?

评论 #14811070 未加载

kevinwangalmost 8 years ago

Can anyone explain? Don't know what I'm looking at.

评论 #14807909 未加载

sparky_almost 8 years ago

Didn't they fork the project a while ago due to theft?

joeblaualmost 8 years ago

It's being put back: <a href="https://news.ycombinator.com/item?id=14811534" rel="nofollow">https://news.ycombinator.com/item?id=14811534</a>Edit: Without Vitalik or a hard fork.

davidwalmost 8 years ago

I miss patio11's posts on these things.

评论 #14809335 未加载

tbarbuglialmost 8 years ago

how much money is that?

评论 #14808200 未加载

评论 #14808160 未加载

thecrazyonealmost 8 years ago

the link seems to be down. Did we DDoS it ?

mtgxalmost 8 years ago

So will the devs create another Ethereum fork to recover this money?

评论 #14811147 未加载

draw_downalmost 8 years ago

It's "cynical" to point out these problems will keep happening, but then they keep happening. So, not much to say.

评论 #14809120 未加载

imronalmost 8 years ago

Don't worry, they can just do another hard fork and get the money back, amirite?

qwertyuiop85almost 8 years ago

0x2ee4899d44F086e8ee974399f404214de33F9b68 Please donate, I'll go full time auditing code from now on. WHG member.

WhatsNamealmost 8 years ago

<a href="https://cryptowat.ch/kraken/ethusd" rel="nofollow">https://cryptowat.ch/kraken/ethusd</a>

评论 #14807941 未加载

qwertyuiop85almost 8 years ago

0x2ee4899d44F086e8ee974399f404214de33F9b68 Please donate, I'm going full bug hunting from today on your behalf. WHG dev. S.