News
Now Reading
Several Ethereum-based Services Escaped Hacking Attack Revealing JSONRPC Vulnerability
7 7 0

Several Ethereum-based Services Escaped Hacking Attack Revealing JSONRPC Vulnerability

by Raphael PutongFebruary 6, 2019

Parity Technologies has announced a fix to a vulnerability in their Ethereum node implementation that was causing their nodes to go offline. 
According to Parity Technologies Twitter account, «while the vulnerability only directly affects Parity Ethereum nodes that serve JSONRPC as a public service (e.g., Infura, MEW, MyCrypto, etc), they recommend everyone to update their nodes immediately.»
The bug had opened up an attack vector to allow nodes to be forced offline by potential attackers. If undiscovered, the attack could have threatened a sizeable portion of the Ethereum infrastructure.
As a reminder, Parity is a popular Ethereum-based platform, and over a year ago it had already suffered from difficulties which resulted in a big loss of funds – around 514,000 ETH was put in quarantine. The measure that would enable unfreezing the funds was turned down during voting in April 2018.

Via icobrothers.media

About The Author
Raphael Putong