Express

Fake Deposit Attack Leaves $1 Billion Worth Of ERC-20 Tokens Vulnerable To Theft

Emily Mason

Summary: A software vulnerability on Ethereum leaves over $1 billion worth of tokens on the blockchain open to be stolen from top exchanges, new research from Peking University, Beijing University of Posts and Telecommunications, Zhejiang University and the University of Queensland states. The vulnerable tokens are missing a software standard released in 2017, according to the report. ...

A software vulnerability on Ethereum leaves over $1 billion worth of tokens on the blockchain open to be stolen from top exchanges, new research from Peking University, Beijing University of Posts and Telecommunications, Zhejiang University and the University of Queensland states.

The vulnerable tokens are missing a software standard released in 2017, according to the report. The loophole is called a fake deposit exploit and authors identified 7,772 ERC-20 issuers with the problem.

Authors argue that by altering smart contracts or programming scripts of ERC-20 tokens listed on exchanges with poor transaction verification standards a hacker could siphon funds.

If the attack were carried out, it could potentially crash the exchange causing holders of the tokens and other cryptocurrencies to lose their assets. 

By Emily Mason

Last Update:

Tags: ,
Link: Fake Deposit Attack Leaves $1 Billion Worth Of ERC-20 Tokens Vulnerable To Theft   [Copy]
  • U.S. SEC Clears Path for Institutional Crypto Custody, Recognizing State Trust Companie... 11 hours ago
  • BTC Weekly Watch: Is the Rebound "Feast" Nearing Its End? 15 days ago
  • ​The Crypto Treasury Boom Meets Regulatory Chill: Is the DAT Frenzy Fading? 22 days ago
  • Nasdaq Takes Aim at 'Crypto-Flipping' Companies with Stricter Rules 26 days ago
  • BTC Weekly Outlook: The Oversold Bounce—A Bottom or a Shorting Opportunity? 29 days ago
  • You need to login to comment.