A critical vulnerability in the Cosmos blockchain's Inter-Blockchain Communication (IBC) protocol, identified as a reentrancy bug in the ibc-go module, could have allowed the infinite minting of IBC tokens, potentially putting $150 million at risk. The security flaw was reported by Asymmetric Research under a bug bounty program and has since been patched before any exploitation occurred. This marks the first discovery of such a bug in the ecosystem, highlighting the ongoing challenges in ensuring cross-chain interoperability security.
A patched @cosmos bug could've put $150 million at risk, according to blockchain security firm @asymmetric_re, which reported the issue under a bug bounty program. https://t.co/Dr804PbkM1
A critical vulnerability was found with ibc-go, but no funds were lost https://t.co/EAr2hmwLip
IBC is the gold standard of cross chain interop and still has devastating bugs being discovered. Thankful there was no damage here and hoping this serves as a reminder to all teams to take security extremely seriously. https://t.co/37YOwdngYT
New blog post: Cosmos IBC Reentrancy Infinite Mint. A critical reentrancy bug in ibc-go could have enabled the infinite mint of IBC tokens on Cosmos chains. https://t.co/ybeLpiUqTU
🚨 Asymmetric Research identified a "reentrancy vulnerability" in the #Cosmos blockchain's #IBC protocol, potentially exposing $150M. Thankfully, the issue was patched before any exploit, marking the first such bug found in the ecosystem.
Patched @cosmos bug could've put $150M at risk, says blockchain security firm @asymmetric_re, which reported the issue under a bug bounty program - @skesslr reports https://t.co/67xiMvctPZ