On Tuesday, Parity revealed that, while fixing a bug that let hackers steal $32m out of few multi-signature wallets, it had inadvertently introduced a new flaw into its systems that allowed one user to become the sole owner of every single multi-signature wallet.

    The user, “devops199”, triggered the flaw apparently by accident. When they realised what they had done, they attempted to undo the damage by deleting the code which had transferred ownership of the funds. Rather than returning the money, however, that simply locked all the funds in those multisignature wallets permanently, with no way to access them.



mk:

Not stolen, no one has it. Not lost, everyone can see where it is. :D


posted by rezzeJ: 347 days ago