Reading: MakerDAO Crypto Community Goes Defensive Following DeFi Exploits

Bank Sponsored
Altcoins

Zcash Discloses Inflation Bug That Could Have Created Infinite Tokens

Avatar

Emilio Janus | Feb 06, 2019 | 15:00

Bank Sponsored
zcash Altcoins

Zcash Discloses Inflation Bug That Could Have Created Infinite Tokens

Avatar

Emilio Janus | Feb 06, 2019 | 15:00

Send
Share

Privacy-focussed cryptocurrency, Zcash, has disclosed an inflation bug, discovered 11 months ago, which affected its own and several other privacy-coins. Though the Zcash vulnerability has now been remedied, it took 8 months after discovery, and some coins remain exposed.

Zero Knowledge

Last March, a Zcash engineer noticed a mistake in a cryptography paper describing certain ‘zero knowledge’ proofs. Zcash (ZEC) 00 and several other coins, use these proofs to enable many of their privacy features. The mistake meant that an attacker could mint an infinite amount of ZEC (or any other affected coins) without detection.

Zcash kept the discovery quiet; only the small team working on the fix knew about the issue. Team members used encrypted communications to reduce the risk of insider leaks or hackers finding the vulnerability.

Bitcoinist_Security Vulnerability

In October, eight months after discovery, the bug was surreptitiously patched during a planned network upgrade. Although Zcash have stated that they do not believe the bug was exploited, they cannot be certain.

Infinite Coins

While all this was going on, the other affected projects were kept in the dark. But after implementing their own fix, the Zcash team informed security staff at Komodo and Horizen. These two represented the majority of the market cap of other affected coins, amounting to $72m and $22m respectively.

Both of these projects have subsequently implemented patches, but other smaller privacy-coins were still vulnerable at the time of announcement. This included Bitcoin Private, with an $18m market cap, who have a contentious history with Zcash.

Research unearthed evidence of a covert pre-mine of Bitcoin Private, and the resulting controversy is blamed for tarnishing Zcash. CEO, Bryce Wilcox, explained:

We didn’t want to disclose to more parties until the majority of the exposed market cap had already been protected.

Subtle Vulnerabilities

The disclosure states that the “vulnerability is so subtle that it evaded years of analysis by expert cryptographers focused on zero-knowledge proving systems.”

A commentator on Twitter pointed out that “bleeding edge crypto is risky;” and that although Bitcoin has less privacy features, this leads to a safer system. He also suggested that BTC transparency meant that a similar bug would be caught more quickly.

Does the disclosed bug pose a threat to ZEC and its market value? Share your thoughts below!

Images courtesy of Shutterstock

BitStarz Player Lands $2,459,124 Record Win! Could you be next big winner?

Tags: , , ,
Send
Share
Show comments
Ethereum gpu mining
Altcoins

How to Build an Ethereum Mining Rig at Home in 2020

Ethereum (ETH) has become more appealing in 2020, with prices rising above $270. Mining has also picked up, awarding 2 ETH each 15 seconds, or 8 ETH per minute. Ethash Still Accessible...

Christine Vasileva | 8 hours ago
crypto tezos XTZ
Altcoins

Price Pain Predicted for Top Performing Crypto Asset Tezos

There is no doubting that Tezos has been one of the best performing crypto assets over the past year. Following a recent all-time high, one prominent analyst has predicted a big...

Martin Young | 2 days ago
crypto market moon
Altcoins

Can the Total Crypto Market Cap Hit $10 trillion by 2023?

Popular YouTube crypto analyst, Benjamin Cowen, has been considering the logarithmic regression band for the total cryptocurrency market cap in his latest video, and based on his...

Emilio Janus | 3 days ago