- The attack reportedly exploited a software glitch in Parity (a widely-used Ethereum client).
- The attack wasn’t able to bring the network down due to another ETH client, Geth, which is immune to this attack.
The Ethereum (ETH) blockchain has encountered and survived what appears to be an intentional attack on December 31. The attack reportedly came very close to shutting the entire network down. Australia-based blockchain developer, Liam Aharon, stated that the attack took advantage of a software glitch in Parity - a widely used Ethereum client.
Sergio Demian Lerner, a crypto security consultant, said:
The attack is simple: you send to a Parity node a block with invalid transactions, but valid header (borrowed from another block). The node will mark the block header as invalid and ban this block header forever but the header is still valid.
George Pîrlea, a distributed systems expert, stated:
The attack consists of sending a block along with a header that doesn’t match the block. Parity verified the block, noticed it did not match the header, and then marked the *header* as bad. This means the real/correct body would never be downloaded.
Aharon explained that the attack exploited a bug in Parity by “tricking” the vulnerable nodes. He said that a prominent number of Parity Ethereum nodes became unsynced with the Ethereum network. He revealed that there are still many Ethereum nodes that haven’t been updated though a software patch was released 14 hours after the attack. Aharon mentioned that the attack could not bring the network down because there’s another popular ETH client, called Geth, which is reportedly immune to this particular attack.
Information on these pages contains forward-looking statements that involve risks and uncertainties. Markets and instruments profiled on this page are for informational purposes only and should not in any way come across as a recommendation to buy or sell in these assets. You should do your own thorough research before making any investment decisions. FXStreet does not in any way guarantee that this information is free from mistakes, errors, or material misstatements. It also does not guarantee that this information is of a timely nature. Investing in Open Markets involves a great deal of risk, including the loss of all or a portion of your investment, as well as emotional distress. All risks, losses and costs associated with investing, including total loss of principal, are your responsibility. The views and opinions expressed in this article are those of the authors and do not necessarily reflect the official policy or position of FXStreet nor its advertisers.
The attack wasn’t able to bring the network down due to another ETH client, Geth, […]