USDT Double spending vulnerability intensifies FUD

Double spending is simply the risk that a digital currency can be spent twice. This problem has been particularly relevant to digital currencies because digital information can be reproduced relatively easily. Although digital currencies existed before Bitcoin, the primary innovation that Bitcoin brought to the world was a way to solve the double spending problem using blockchain.

Yesterday, a Chinese cyber security firm called ‘SlowMist’ identified a double spending vulnerability in the stable coin Tether (USDT).

Upon investigating, SlowMist recognized that they could send USDT to an unnamed   exchange without the correct field values inputted in the transaction, meaning that users could be credited for tokens on the exchange without having to actually send them. This would lead to double spending.

Craig Sellars, the Founder  of Omni Layer (the protocoal behind Tether USDT) later responded to this discovery:

It appears that what happened here is that an exchange wasn’t checking the valid flag on transactions. They accepted a transaction with valid=false (which they should not have), and then the second “double spend” transaction had valid=true, which they also accepted. Unless I am missing something, this is just poor exchange integration.”

Although this appears to primarily be an exchange problem, Tether has frequently been in the news for other controversial reasons. Most recently, they issued another $250 million in new tokens, raising many to question whether they were really still backed 1-to-1 with US Dollar reserves.

However, a double spending controversy arguably has for more serious implications, as it means the loophole could potentially be exploited without limitations.

People could make false transactions that an exchange would register as true, granting them tokens they never had to hold (in other words, their money would literally come from air).

Any exchange caught involved in this mishap could seriously damage its reputation as result of fault record keeping created by double spending incidents. In the meantime, OKEx, the second largest exchange also put out a statement clarifying to users that they had performed the necessary tests when been notified of the news and confirmed that they are not exposed to any damage.

The anonymous exchange, which is involved in this incident, should be relieved that they were not exposed, and have been taking all measures necessary to rectify the situation before any significant vulnerability ensues.

The post USDT Double spending vulnerability intensifies FUD appeared first on CryptoPotato.



from CryptoPotato https://ift.tt/2yQVQ8p
via IFTTT

Kommentare

Kommentar veröffentlichen

Beliebte Posts aus diesem Blog

Central Bank of Spain To Prioritize the Design and Study of a CBDC

The Central Bank of Spain published its Strategic Plan for 2020-2024, describing the objectives and strategies it will follow to boost its economy and adapt the country’s finances to the requirements of the modern era, and a CBDC is one of its priorities. The digital world is stealing the attention of the Spaniards. In its “ Analysis and research priorities for the Banco de España: 2020-2024 “, the Central Bank said it will prioritize the study of the legal, technological and financial framework surrounding the issuance of a possible CBDC to optimize the efficiency of banking processes. Publicamos las prioridades de análisis e investigación del @BancoDeEspana para 2020-2024 en el contexto de nuestro #PlanEstratégico https://t.co/dGbwsx7adc El gobernador #bdeHdeCos lo explica 📽️ https://t.co/81br6OLqpk #bdePrensa pic.twitter.com/iXFdUXPwGf — Banco de España (@BancoDeEspana) October 16, 2020 A Spanish Currency on a Cadena de Bloques ? In a chapter dedicated to the developme
Mehr anzeigen