Quite a novel attack originally reported on Reddit.<p>Basically, it was possible to use a bug in the wallet software to send multiple outputs to the same stealth wallet, potentially allowing an attacker to cheaply burn a large amount of someone else's tokens, on account of the wallet simplying ignoring the issue.<p>This has now been fixed. Great work from the Monero team.
Can someone eli5? I couldn’t work out whether this is an attack on exchanges (modifying the client to reuse a key in a way that the exchange doesn’t check for) or something else.<p>The repeated use of “organization” made me initially think that this was an attack on a “foundation” (tor, eff, Mozilla, etc that kind of thing), but by the end I felt that it was meaning organization==exchange? If so I assume it would be an attack on exchanges prematurely believing a transaction succeeded? But seriously I’m curious what the actual correct interpretation is :)