Interchain Labs: Former Cosmos maintainer had no intention of introducing North Korean associates, found no security issues and doubled the bounty

PANews reported on June 16 that according to The Block, Interchain Labs has confirmed that an individual who was later identified as being associated with North Korea contributed to the Cosmos code base while employed by the former maintainer between 2022 and 2024. The individual had limited access to the cosmos/IAVL and cosmos/cosmos-sdk code bases, and most of his contributed codes have been abandoned or excluded from the roadmap, and independent audits have found no risk vulnerabilities.

To support transparency, ICL will double the bounty for one month on the Cosmos HackerOne page for discovering vulnerabilities related to the participant's GitHub account. After ICL took over the development of the core stack, it implemented new security protocols, preventing further contributions, and the person was rejected for further positions. ICL has upgraded the security of all Cosmos core code bases and will deprecate related code bases in the future. This incident highlights the need for strict security procedures in the Web3 and broader technology fields.

Share to:

Author: PA一线

This content is for informational purposes only and does not constitute investment advice.

Follow PANews official accounts, navigate bull and bear markets together
Telegram Discussion Group
Telegram News Channel
@PANews
Recommended Reading
5 hour ago
2025-12-17 08:22
2025-12-17 06:07
2025-12-17 03:58
2025-12-17 03:44
2025-12-16 11:16

Popular Articles

Industry News
Market Trends
Curated Readings
Subscribe

Curated Series

App内阅读