CertiK Chanced on ‘HamsterWheel’ Threat on Sui Blockchain Earlier than Mainnet Launch
The Sui Foundation awarded blockchain safety firm CertiK $500,000 for the discovery and disclosure of a brand original kind of threat which can admire brought the Sui blockchain to a stop.
The so-known as “HamsterWheel” attack traps the community’s nodes in an indefinite loop of checking previous transactions with out processing any original ones.
“This approach can cripple total networks, effectively rendering them inoperable,” CertiK said in a observation on Monday.
.@SuiNetwork awarded CertiK a $500K bounty for the discovery of a extreme vulnerability.
For added technical significant components on this trojan horse bounty, investigate cross-test our blog on the HamsterWheel attack, ⬇️https://t.co/C0Bc6QVmjP#CertiK #SuiNetwork #sui
— CertiK (@CertiK) June 19, 2023
CertiK alerted the Sui crew to the vulnerability prior to its mainnet initiate through the trojan horse bounty program and said the developers boring the blockchain had been rapid and atmosphere pleasant in their response. As properly as to fixing the topic at hand, Sui’s developers additionally applied preventative measures to limit the atomize attributable to a means exploit.
At the time of writing, the Sui blockchain had $11.9 million in Complete Price Locked (TVL), fixed with info from DeFiLlama, whereas the community’s native token SUI had a market cap of $400 million.
The discovery and management of the threat prior to the community went reside is now now not simplest a significant fetch for Sui, nonetheless additionally CertiK, which honest currently confronted criticism from blockchain proponents over its audit of zkSync decentralized replace Merlin. At the time of its audit, CertiK awarded Merlin a excessive safety rating of 90 and chanced on no extreme concerns with the mission’s code, effectively signaling the mission used to be stable to speculate in. Nonetheless, the mission perceived to “rug pull” its traders almost at present after launching its public token sale, making off with $1.8 million worth of user funds.
Source credit : unchainedcrypto.com