Ethereum Voting on Restoring Parity Hack

in #ethereum7 years ago

As much as $300 million USD worth of ETH could be lost in Parity (multi-sig wallet) hack/bug lately.

It is said that guy who was just testing his contract skills did it by mistake, which means wallet/contract devs are to blame.
image.png

This caused some wallets to freeze and be unable to forver get money back, affected ICOs are:

Polkadot: 306,276 ETH ($93.1m)
ICONOMI: 114,939 ETH ($34.9m)
Centrality: 21,704 ETH ($6.6m)
Musiconomi: 16,476 ETH ($5m)
Hedge Token: 4,525 ETH ($1.4m)
Moeda: 4,361 ETH ($1.3m)
Wysker: 1,577 ETH ($479k)
Viewly: 1,400 ETH ($426k)
Fluence: 1,376 ETH ($418k)
Live Stars: 672 ETH ($204k)
IMMLA: 600 ETH ($182k)
Silent Notary: 286 ETH ($87k)
Mirocana: 285 ETH ($87k)
DAO.Casino: 150 ETH ($46k)
Fiinu: 145 ETH ($44k)
Jincor: 58 ETH ($18k)

Yes notice Viewly a chain based from STEEM is on the list too.

Since once ETH was re-rolled due to DAO hack and created ETC (Ethereum Classic) now there is a pool where people vote if this should be re-rolled or not.

At this point, people chose to NOT do it, as this may create a 3rd chain.

You can cast a vote here if you have enough ETH - https://www.etherchain.org/coinvote/poll/35

ETH Markets


Notice how Binance as usual is on the spot but also BiBox that i have lately shared to readers here gets a place on podium of top10.

Follow, Resteem and VOTE UP @kingscrown creator of http://fuk.io blog for 0day cryptocurrency news and tips!

Sort:  

Quite disturbing just how easy someone by mistake can break things to that large of a scale. Makes you wonder what someone more skilled could do if they wanted to inflict massive damage to such an ecosystem. They really need developed some better fail safes.

Exactly my thought too.

Both in TheDAO and in the Parity case we can assume the bug in the contract code was made by accident, not by malice. There was quite some people doing peer review of TheDAO, but the bug was not discovered. If such accidental security bugs can sneak through undetected, then a malicious actor wanting to insert a backdoor and wanting to make it hidden should have reasonable good chance to succeed on that.

What is the point with "smart contracts" if they cannot be trusted?

This very thought made less convinced about the Ethereum project in the aftermath of TheDAO-hack, hence for quite a while I held no ethereum except what I had put into TheDAO

It’s sadly the issue with a lot of products coming out in this space. Very young company moving way to fast and getting massive evaluations. Everyone wants to be the next BTC and no one wants to miss the train either. That sadly comes at high costs like this and even worse giving governments ammunition to have resistance to such thing. $300 million just going missing in a way most people won’t even have a clue about is enough to set off many alarm bells. Which is just creating further PR issues for this product and the entire space overall.

I’ve never touched ETH and never heard of any the ICO’s on this list. With how young these all are I’m going guess having experts with 10,000 hours of experience is still difficult or nonexistent. Add in no one wants to sit too long on alpha/beta testing with how fast this space moves and people being fearful someone else will beat them to market. I’m rather shocked this is not happing more often. Reminds me of modern day gaming where it seems every product is being shipped needing day one patches because it was still not working hours before the final release.

One would hope the lowest common denominator would not be able to brick an entire system but things can easily become overlooked. People often don’t think in terms of that when testing as they already have way too much experience. Based on a screen of conversion that went down it appears smart contacts are not very smart. I’ve always felt the learning curve is a bit steep when people have to practice with real money that also can cause real dire consequences. Sounds like this person should be nowhere near an active system.

Do they even have a particle/demo setting for people to play with smart contracts? I’ll admit I know very little about this specific item. I guess it’s at least better it happening now then years down the road if it was never discovered. Who knows what else could be lurking in wait. I can only hope this causes a fair amount of resources being spent to assure to the public it won’t ever happen again. Next time its doubtful to be such a small amount of $300 million and that is crazy.

My thought is that perhaps the "solidity" contract language is not well-enough thought through.

Bugs in games is one thing, but contracts needs to be rock solid, easy to understand and easy to review.

When things like this happens multiple times, and even after code reviews, then it's too easy to just blame the contract authors.

Yes, unfortunately things like this have to happen in order for those fail safes to be made....but this is very disturbing i agree.

One can only hope they spend a fair amount of resources to gain the public trust they must be losing back again. That has to be some very angary investors and I can only imagine telling them "sorry the network did not want make another split better luck next time" Is not going be a good PR day.

The problem is that a trade was made when solidity was created, easy to get Javascript developers on board or secure?? Easy was chosen over security

That will be a tragic moment for them and now they were pointing their fingers to blame those who are responsible for this loss. Such a bad bad bad day for them, sad :(

So what is the way to stop hacking?

Great to see eth back

But felling afraid to back eth

Not trying to be insensitive to somebodies loss here. Not trying to make light of the situation but I wish that I was the one to press that button

Should be recover on this losses for party

its a nice post sir. it was very informative.
sir thank you very much for your post.

That is an insane amount of ETH and another setback to cryptocurrency acceptance by the outside world.

My vote is also not to do it. You know the risks if you don't hold your coins in your own wallet

Your argument is invalid because it's based on the wrong assumptions. Money was not kept on a centralized exchange, but in a multi-sig wallet. This loss was due to a bug in the wallet.

I guess this is the equivalent of all the fiat money that gets flushed down the toilet

Hi nice article.....Keep writing that's like article and let's help each other also checkout my post click here

Coin Marketplace

STEEM 0.23
TRX 0.25
JST 0.038
BTC 95511.18
ETH 3313.19
USDT 1.00
SBD 3.30