Web3 Firm Thirdweb Finds Major Vulnerability In Smart Contracts – Cryptonews
Source: Pixabay
Web3 developer Thirdweb has disclosed a security vulnerability that has the potential to affect a range of smart contracts within the Web3 ecosystem.
In an X post on Monday, the firm notified its followers that it had found a vulnerability in a commonly used open-source library that could impact specific pre-built smart contracts, including some of its own. Luckily, Thirdwebs investigations determined that the smart contract vulnerability remains unexploited, providing a brief window of opportunity for Web3 firms to take preventive measures and mitigate the risk of a potential hack.
In most cases, the mitigation steps will involve locking the contract, taking a snapshot and migrating to a new contract without the known vulnerability, the firm said on X. The exact steps you need to take will depend on the nature of your smart contract, and you can determine these using the tool.
Thirdweb noted that the impacted pre-built contracts include but are not limited to DropERC20, ERC721, ERC1155 (all versions), and AirdropERC20. The company included a link to see a full list of impacted smart contracts and mitigation steps.
The company advised users who had deployed the listed smart contracts before November 22 to immediately take mitigation steps or use a company-provided tool.
Thirdweb also recommended developers assist users in revoking approvals on all affected contracts through revoke.cash. DefiLlama developer 0xngmi noted in a reply to the post that this would protect your users if you choose not to mitigate the contract.
Following the discovery of the vulnerability, Thirdweb has committed to increasing investments in security measures. The firm plans to double bug bounty payouts, raising them from $25,000 to $50,000, and is implementing a more stringent auditing process. The Web3 developer will also provide a grant to cover the costs associated with contract mitigations.
We understand that this will cause disruption, and we are treating the mitigation of the issue with the utmost seriousness, the firm continued in its post. We will be offering a retroactive gas grant to cover fees for contract mitigations.
Thirdweb is a Web3 developer that provides multichain smart contract deployment tools for minting, gaming, wallets, and more. The firm claims to have more than 70,000 developers using its services monthly.
The company previously raised $24 million in a Series A funding round with Haun Ventures, Coinbase, Shopify and Polygon in August 2022.
Enter your email for our Free Daily Newsletter
A quick 3min read about today's crypto news!
Read more here:
Web3 Firm Thirdweb Finds Major Vulnerability In Smart Contracts - Cryptonews
- Ethereum Time Machine: A New Era for Smart Contracts and Future-Based Transactions - Crypto News Flash - November 16th, 2024 [November 16th, 2024]
- Ethereum researcher unveils time machine for even smarter, smart contracts - StartupNews.fyi - November 16th, 2024 [November 16th, 2024]
- FlexiNetAI Is Disrupting Blockchain Space With Innovative Smart Contracts - StreetInsider.com - November 2nd, 2024 [November 2nd, 2024]
- From Code to Intelligence: How Yeager.ai is Building Internet-Native Smart Contracts - hackernoon.com - November 2nd, 2024 [November 2nd, 2024]
- Smart Contracts Platforms Market Poised for Explosive Growth, Reaching $230.4 Billion by 2032 - openPR - October 23rd, 2024 [October 23rd, 2024]
- Healthcare Smart Contracts Market Business Insights, Key Trend Analysis - News in Assen - October 7th, 2024 [October 7th, 2024]
- From Court to Code: Smart Contracts and Arbitration - JD Supra - September 21st, 2024 [September 21st, 2024]
- VeChain CEO Says Incentivizing EV Drivers For Reducing C02 Emissions Is "Very Cheap" Because Of Smart contracts - 99Bitcoins - September 21st, 2024 [September 21st, 2024]
- How Smart Contracts are Reinventing the Gaming Experience - SMEStreet - September 21st, 2024 [September 21st, 2024]
- W3.io Launches Industry Alliance to Develop the First Orchestration Cloud for Smart Contracts - Decrypt - September 19th, 2024 [September 19th, 2024]
- Smart Contracts Market: Enabling Secure and Automated Transactions - openPR - September 19th, 2024 [September 19th, 2024]
- How Smart Contracts are Enhancing Trust in Crypto-Based Gambling Platforms - UseTheBitcoin - September 19th, 2024 [September 19th, 2024]
- Meticulous Research Projects the Smart Contracts Market to Reach $8.7 Billion by 2031 - openPR - September 19th, 2024 [September 19th, 2024]
- Smart Contracts: where are we now and does AI have a role to play? - Travers Smith - September 10th, 2024 [September 10th, 2024]
- Friend.tech's FRIEND token tanks to record low as team abandons control of smart contracts - Crypto Briefing - September 10th, 2024 [September 10th, 2024]
- Friend.Tech Faces Uncertain Future After Transferring Control of Smart Contracts - BSC News - September 10th, 2024 [September 10th, 2024]
- Ripples Vision: Native Smart Contracts on XRPL Mainnet and Launching the XRPL EVM Sidechain - CryptoGlobe - September 6th, 2024 [September 6th, 2024]
- Ripple Will Support Ethereum Compatible Smart Contracts Soon - Live Bitcoin News - September 6th, 2024 [September 6th, 2024]
- Smart Contracts On The XRP Ledger, Ripples Change Of Heart Worries Community | Bitcoinist.com - Bitcoinist - September 6th, 2024 [September 6th, 2024]
- Ripple to bring smart contracts on XRP Ledger - crypto.news - September 6th, 2024 [September 6th, 2024]
- Ripple to Add Ethereum-Compatible Smart Contracts to XRP Ledger - Cryptonews - September 6th, 2024 [September 6th, 2024]
- Ripple to Add Ethereum Smart Contracts to its XRP Ledger - Watcher Guru - September 6th, 2024 [September 6th, 2024]
- Flare Labs CEO Says Smart Contracts on XRP Ledger Will Make FXRP Even Better - The Crypto Basic - September 6th, 2024 [September 6th, 2024]
- Ripple Introduces Smart Contracts and Innovative NFT Features to the XRP Ledger - Crypto News Flash - September 6th, 2024 [September 6th, 2024]
- Tensions Rise in XRP Community as Ripple Reverses Stance on XRPL Smart Contracts - The Crypto Basic - September 6th, 2024 [September 6th, 2024]
- XRP Ledger set to gain smart contracts and EVM Sidechain - CryptoTvplus - September 6th, 2024 [September 6th, 2024]
- XRP to Moon: Ripple To Expand XRP Ledger with Ethereum-Compatible Smart Contracts - Coinpedia Fintech News - September 6th, 2024 [September 6th, 2024]
- Ripple Announces Smart Contracts for XRP Ledger, Expanding Features for NFTs, AMMs, and DEXs - BSC News - September 6th, 2024 [September 6th, 2024]
- Ripple To Add Ethereum Smart Contracts To XRP Ledger By yolowire.com - Investing.com Canada - September 6th, 2024 [September 6th, 2024]
- Ripple to Enhance XRP Ledger with Ethereum-Compatible Smart Contracts - Crypto News Australia - September 6th, 2024 [September 6th, 2024]
- Ripple to launch smart contracts on XRP Ledger (XRPL), boosting DeFi capabilities and DApps - Invezz - September 6th, 2024 [September 6th, 2024]
- Soroban: Unlocking DeFi Opportunities with Smart Contracts on Stellar - The Defiant - DeFi News - August 20th, 2024 [August 20th, 2024]
- How Are Smart Contracts Different From DApps: Top 5 Amazing Examples Of Each - Blockchain Magazine - August 20th, 2024 [August 20th, 2024]
- Bitcoin Sidechains: CertiK Shares Insights on Clarity Smart Contracts which Are Utilized By Stacks Chain - Crowdfund Insider - August 16th, 2024 [August 16th, 2024]
- Blockchain Currencys Role in the Evolution of Smart Contracts - NFL Draft Diamonds - August 16th, 2024 [August 16th, 2024]
- How to Bridge to Internet Computer? - Watcher Guru - July 15th, 2024 [July 15th, 2024]
- Why (Almost) Everyone in Ethereum Is So Excited About a Wallet-Related Proposal - Unchained - Unchained - April 13th, 2024 [April 13th, 2024]
- Ethereum's Pectra upgrade slated for Q4 2024, bringing smart contract features and improved UX for wallets - Crypto Briefing - April 13th, 2024 [April 13th, 2024]
- Ethereum's Pectra upgrade to make normal wallets 'smart' and improve UX - Cointelegraph - April 13th, 2024 [April 13th, 2024]
- Ex-Amazon engineer sentenced to 3 years in prison for $12m crypto hack - crypto.news - April 13th, 2024 [April 13th, 2024]
- How Are Smart Contracts Transforming Financial Transactions? - IT News Africa - April 13th, 2024 [April 13th, 2024]
- Enhancing Smart Contract Security With SolidityScan and Blockscout Integration - Business - April 13th, 2024 [April 13th, 2024]
- Top 15 Use Cases of Blockchain in the Real World, 2024 - Analytics Insight - April 13th, 2024 [April 13th, 2024]
- exSat Unveiled: Pioneering the Future of Bitcoin Scalability and Interoperability with Layer 2 Solutions - FinanceFeeds - April 9th, 2024 [April 9th, 2024]
- ZkLink looks to solve Ethereum's fragmented liquidity with a layer 3 but there are risks - DLNews - April 9th, 2024 [April 9th, 2024]
- 1 in 6 new Base meme coins are scams, 91% have vulnerabilities - TradingView - April 9th, 2024 [April 9th, 2024]
- The AI-Based Smart Contract Audit Firm "Bunzz Audit" Has Officially Launched - Chronicle-Tribune - April 9th, 2024 [April 9th, 2024]
- BlockDAG Smart Contract Leads With 20,000x ROIs As Top Trending Crypto Surpassing Dogecoin Rally And ICP's ... - Blockchain Magazine - April 9th, 2024 [April 9th, 2024]
- The complete guide to full stack BSV blockchain development - CoinGeek - April 9th, 2024 [April 9th, 2024]
- What Is Ethereum Restaking? - Ledger - April 9th, 2024 [April 9th, 2024]
- The Contract Evolution: Are Smart Contracts Outsmarting Tradition? - yTech - April 1st, 2024 [April 1st, 2024]
- Vitalik Buterin Initiates 'The Purge': Ethereum Protocol Simplification for Enhanced Efficiency - TradingView - April 1st, 2024 [April 1st, 2024]
- sCrypt Hackathon 2024: Making Ordinals easier with smart contracts - CoinGeek - April 1st, 2024 [April 1st, 2024]
- Smart Contracts and Family Law: Revolutionizing Agreements for the Modern Family - The Good Men Project - April 1st, 2024 [April 1st, 2024]
- NEAR launches tool for signing transactions on Bitcoin, Ethereum and more - Blockworks - April 1st, 2024 [April 1st, 2024]
- sCrypt Hackathon 2024: Project Babbage on why users should be at the center of digital economy - CoinGeek - April 1st, 2024 [April 1st, 2024]
- Cardano Gains Momentum: Innovative Developments Promise Continued Expansion and Evolution - West Island Blog - April 1st, 2024 [April 1st, 2024]
- How smart accounts and account abstraction can unlock Ethereum's full utility - Cointelegraph - March 22nd, 2024 [March 22nd, 2024]
- Stellar will invest $100M in Soroban smart contract apps in bid to beat Ethereum - VentureBeat - March 22nd, 2024 [March 22nd, 2024]
- Top 10 Intriguing Ways EVM (Ethereum Virtual Machine) Was Popularized By DeFi Craze - Blockchain Magazine - March 22nd, 2024 [March 22nd, 2024]
- Cardano (ADA)'s Smart Contract Boom: Is ADA Heading to $5? - CryptoTicker.io - Bitcoin Price, Ethereum Price & Crypto News - March 22nd, 2024 [March 22nd, 2024]
- Blockchain evolution with MANTA for Sora and intelligent contracts - Cointelegraph - March 22nd, 2024 [March 22nd, 2024]
- Top 10 Amazing Ways Ethereum Limitations Can Be Resolved By DApps Support - Blockchain Magazine - March 22nd, 2024 [March 22nd, 2024]
- The Anticipated Altcoin Season- A Look at the Possibilities and Potential Players Satoshi Business News - The San Bernardino American News - March 22nd, 2024 [March 22nd, 2024]
- Crypto to Buy Now: Stellar's Sorban, Scorpion Casinos' Daily Staking Reward for 10x Gains and Uniswaps Volatility - Analytics Insight - March 22nd, 2024 [March 22nd, 2024]
- Smart Contracts Go Live on Stellar, Kicking Off a "New Era" for the Network - Cryptonews - February 23rd, 2024 [February 23rd, 2024]
- Stacks (STX) price outperforms the market as interest in layer-2 Bitcoin grows - TradingView - February 23rd, 2024 [February 23rd, 2024]
- This Is What Vitalik Buterin Thinks About Artificial Intelligence (AI) - BeInCrypto - February 23rd, 2024 [February 23rd, 2024]
- 200-year-old Scotch whiskey maker enters the AI age with generated labels - ReadWrite - February 23rd, 2024 [February 23rd, 2024]
- Smart Contracts: the future of efficient and transparent business interactions - NL Times - February 23rd, 2024 [February 23rd, 2024]
- Understanding DAOs: The Pros and Cons of Decentralized Autonomous Organizations - Geeks World Wide - February 23rd, 2024 [February 23rd, 2024]
- Vitalik Buterin says AI could help solve Ethereum's 'biggest technical risk' - Cointelegraph - February 23rd, 2024 [February 23rd, 2024]
- Chainlink Bulls Brace For Explosive Growth Following $216 Million Whale Accumulation - TradingView - February 23rd, 2024 [February 23rd, 2024]
- Demystifying Smart Contracts: The Power of Decentralization | by Advancio | Dec, 2023 - Medium - December 10th, 2023 [December 10th, 2023]
- What is Flare (FLR)?: Will Flare Price Explode in 2024? - CryptoTicker.io - Bitcoin Price, Ethereum Price & Crypto News - December 10th, 2023 [December 10th, 2023]
- Web3 developer Thirdweb boosts bounty to $50,000 in light of fresh smart contract security risks - CryptoSlate - December 10th, 2023 [December 10th, 2023]
- Smart contract exploit in TIME token leads to $188k loss - crypto.news - December 10th, 2023 [December 10th, 2023]
- The Future of Trust and Efficiency in Transactions - Medium - December 10th, 2023 [December 10th, 2023]
- Chainlink Community Staking Pool Full, Drawing More Than $620M - Unchained - December 10th, 2023 [December 10th, 2023]
- ERC-2771 integration introduces address spoofing vulnerability OpenZeppelin - Cointelegraph - December 10th, 2023 [December 10th, 2023]