Connect with us


Monero, Stellar among blockchains benefiting from Bug Bounty programs; over 20 security flaws fixed in 2 weeks

Febin Jose



Source: Pixabay

Since its inception, blockchain technology has been hailed as one of the most secure technologies ever, owing to features such as immutability and decentralized consensus. However, more and more security vulnerabilities have come to light in the last decade, through large-scale hacks where the perpetrators exploited seemingly non-existent bugs to gain access to users’ funds.

However, this has also helped security agencies and exchanges understand various security lapses and fix them, before they are exploited by hackers. The Bug Bounty program, where a hacker is rewarded for finding security vulnerabilities, is one of the primary methods by which exchanges and security firms track down and fix vulnerabilities.

According to a report by The Next Web, participants of bug bounty programs continue to help secure the network and rid blockchain projects of crucial bugs, earning a minimum of $7,500. This is especially so on Monero and Stellar.

According to data collated by HackerOne, atleast seven cryptocurrency-related projects rewarded ethical blockchain hackers for finding and fixing over 20 crucial bugs in the last two weeks, from 14 March to 28 March. Some of the major blockchain projects which distributed considerable bounties to ethical hackers were Monero, Stellar, ICON, and Augur. Some non-blockchain services including Robinhood, Omise, and also paid hackers for patching certain security vulnerabilities.

Of all the services and projects analyzed by HackerOne, Omise, the organization behind the OmiseGo cryptocurrency registered the highest number of security vulnerabilities. The service reported eight crucial vulnerability reports over the past two weeks.

Source: HardFork - The Next Web

Source: HardFork – The Next Web

The second place on the list was shared by betting market, Augur and Digital asset wallet/exchange service, Both of the services listed three security vulnerabilities each.

Monero, the ‘privacy coin,’ reported a total of two security vulnerabilities. However, it was unclear how much bounty was paid for finding the security loopholes.

Stellar, the cryptocurrency which saw increased adoption over the past week due to the World Wire announcement, registered one bug bounty. Again, the money involved was not disclosed to the public.

Augur distributed a total of $2,850 in bug bounty over the past two weeks. Though two of the vulnerabilities were not that prominent, one was labelled “medium risk,” and the researcher who found the bug was offered $2,500 as a reward, amounting to over 85% of the total bounty distributed.

Though’s security issues were not very sinister, the company distributed almost $2,250 as bounty over the past two weeks.

ICON registered only one issue, but the bounty for fixing it was $1,000. Robinhood registered two bug bounties, but the details of the same were withheld.

Subscribe to AMBCrypto’s Newsletter

Follow us on Telegram | Twitter | Facebook

Febin Jose is a full-time journalist/editor at AMBCrypto. He believes that cryptocurrencies will navigate a volatile future and that Arsenal can still win a title. Lives around the "if it sounds like writing, I rewrite it" mantra.


SEC delays VanEck Bitcoin ETF decision days after delaying Bitwise proposed rule change





SEC delays VanEck Bitcoin ETF decision days after delaying the Bitwise proposed rule change
Source: Unsplash

The Securities and Commission Exchange [SEC] has yet again delayed another Bitcoin ETF. This time around, the commission has decided to delay the VanEck Soldix Bitcoin ETF, one of the most awaited exchange-traded funds in the cryptocurrency community.

In the document released today, the exchange has asked for more comments on the proposed rule change and has also asked for further information on queries related to the exchange-traded fund. The commission stated that it has received 25 comments on the proposed rule change so far.  It stated,

“On January 30, 2019, Cboe BZX Exchange, Inc. […] filed with the Securities and Exchange Commission, […] a proposed rule change to list and trade shares of SolidX Bitcoin Shares issued by the VanEck SolidX Bitcoin Trust […] The proposed rule change was published for comment in the Federal Register on February 20, 2019.”

It further stated

“On March 29, 2019, pursuant to Section 19(b)(2) of the Act, the commission designated a longer period within which to approve the proposed rule change, disapprove the proposed rule change, or institute proceedings to determine whether to disapprove the proposed rule change.”

Notably, the main concerns of the commission continue to be market manipulation and the measure taken by the platform to protect its investors. The commission is currently seeking comments on 14 queries pertaining to the VanEck Bitcoin ETF.

This includes the views of the ‘commenters’ on whether the exchange has entered “into a surveillance-sharing agreement with a regulated market of significant size related to bitcoin?”, the relationship between the Bitcoin futures markets and the Bitcoin spot market, with the focus being price formation, the relationship between the Bitcoin futures market and the proposed Bitcoin ETF, and the commenters’ views “of the Exchange’s assertions that bitcoin is arguably less susceptible to manipulation than other commodities that underlie ETPs”.

Gabor Gurbacs, Director of Digital Assets Strategy with VanEck said on Twitter,

“The VanEck SolidX #Bitcoin #ETF decision has been postponed by the SEC. We continue the hard work towards better-regulated, safer and more liquid digital assets markets. Bitcoin is too big to ignore. Vires in numeris!”

Subscribe to AMBCrypto’s Newsletter

Continue Reading