The Sui Foundation has awarded smart contract audit firm CertiK a $500,000 bounty. CertiK had discovered an infinite loop bug that could be an attack vector on the Sui network.
In this bug, a malicious smart contract could cycle infinitely through blockchain nodes, paralyzing the network.
hamster wheel attack
In a June 19th press release, CertiK said, “Unlike traditional attacks that shut down blockchains by crashing nodes, the Hamster Wheel attack appears to be running on top of a hamster wheel. “This strategy can cause the entire network to malfunction, effectively rendering it inoperable.”
According to the Sui Foundation, after the bug was identified, the development team implemented “two key measures to mitigate the potential impact of similar issues in the future.” CertiK has confirmed that a fix for this bug has already been rolled out and will publish a full technical report at a later date.
Mainnet runs smoothly
Darius Goore, head of communications at the Sui Foundation, said: “As a result of the (bounty) program, we were very pleased to find and fix this bug well before the Sui network went live. I think,” he told CoinDesk.
“The first six weeks of the Sui mainnet have been very smooth from an operational and security perspective, not only because of our bug bounty program, but also because of our robust third-party audit program and thorough internal testing,” said Guar. Stated.
“The discovery of the hamster wheel attack demonstrates the increasing sophistication of threats to blockchain networks,” CertiK Chief Security Officer Kang Li said in a statement.
｜Translation: coindesk JAPAN
｜Editing: Rinan Hayashi
| Image: Getty Images
｜Original: Blockchain Security Firm CertiK Found an Infinite Loop Bug in Sui Network