Qubit项目的QBridge遭受攻击主要由于未对其是否是0地址再次进行检查

This article is not available in the current language yet. Showing the original version.
PA一线
PA一线

PANews 1月28日消息,据慢雾情报,Qubit 项目的 QBridge 遭受攻击损失约 8000 万美金。慢雾安全团队进行分析后表示,本次攻击的主要原因在于在充值普通代币与 native 代币分开实现的情况下,在对白名单内的代币进行转账操作时未对其是否是 0 地址再次进行检查,导致本该通过 native 充值函数进行充值的操作却能顺利走通普通代币充值逻辑。慢雾安全团队建议在对充值代币进行白名单检查后仍需对充值的是否为 native 代币进行检查。


Share to:

Author: PA一线

This content is for market information only and is not investment advice.

Follow PANews official accounts, navigate bull and bear markets together
Telegram Discussion Group
Telegram News Channel
@PANewsCN
Recommended Reading
PA一线

PA一线

Gate: Hong Kong stock market shows structural divergence, with Luoyang Glass Co., Ltd. leading the gains with a rise of over 37%.
PA一线

PA一线

WeChat Pay officially launched its AI-exclusive card, which is now supported for use within WorkBuddy.
PA一线

PA一线

Bitwise CIO: As long as the top hasn't been reached, Bitcoin remains an excellent buying opportunity.
PA一线

PA一线

Crypto PAC won the Alabama Republican primary with $12 million in backing for candidate Barry Moore.
PA一线

PA一线

Analysis: Bitcoin's Sharpe ratio has hit an all-time low, and accumulation wallets have held 125,000 BTC in June.
PA一线

PA一线

Gate's contract stock section will launch trading for 8 perpetual contracts, including SOXS (3x short-selling semiconductor daily leveraged ETF).

Popular Articles

Industry News
Market Trends
Curated Readings
Subscribe
PANews App
24/7 blockchain news tracking and in-depth analysis.
Download PANews App
App StoreGoogle Play
PANews APP
WeChat Pay officially launched its AI-exclusive card, which is now supported for use within WorkBuddy.
PANews Newsflash