Ethereum proof-of-work blockchain Experiencing the Replay exploit, the attacker received 200 additional ETHW tokens after Replay messages from the proof-of-stake chain, according to the cybersecurity firm’s alert on Sunday.
“The attacker (0x82fae) transferred the first 200 WETH through the omni bridge of the Gnosis chain, then replayed the same message on the PoW chain and received an additional 200 ETHW,” according to BlockSec. sayOn Twitter, the attack happened because the bridge didn’t validate the chain ID of the cross-chain message.
Blockchain developer team ETHPoW says the attack exploits the bridge contract vulnerability, not from the blockchain itself.
“ETHW itself has enforced EIP-155, and there are no replay attacks from ETHPoS and ETHPoS, which ETHW Core security engineers have planned ahead of time,” the developers of ETHW Core said. write it downIn a post on Medium
The developer team also said that Tried to contact Omni Bridge on Saturday to inform them of the Omni Bridge risks, but received no immediate response to the request.
“We have contacted Omni Bridge in every possible way and informed them of the risks. And they need to verify the authenticity of the true ChainID of the cross-chain messages.”
The post BlockSec detected a replay attack issue of ETHPoW tokens appeared first on Bitcoin Addict.