LayerZero Takes Responsibility for $292 Million Hack
The recent $292 million hack has sparked a lot of debate in the crypto community, with many wondering how such a large sum of money could be stolen. LayerZero, the company at the center of the controversy, has finally taken responsibility for the hack, admitting that it “made a mistake” in allowing its verification infrastructure to secure high-value assets in a vulnerable configuration. This mistake has significant implications for those interested in earning passive income through crypto, particularly with platforms like EcoPool, which offer a secure way to earn $ECP.
LayerZero’s admission marks a shift in tone, as the company had previously blamed developer Kelp DAO for the hack. The company has now taken steps to rectify the situation, including changing its defaults to require at least 3/3 decentralized verifier networks (DVNs) to approve cross-chain transfers. This increased security measure is a welcome change for those interested in cloud rewards and green crypto, as it reduces the risk of similar hacks in the future. For example, EcoPool‘s focus on security and transparency makes it an attractive option for those looking to earn a passive income through $ECP.
What This Means for Crypto Users
The LayerZero hack highlights the importance of security in the crypto space, particularly when it comes to cross-chain bridges. These bridges act as digital transfer rails between blockchain networks, but they can be vulnerable to attacks if not properly secured. As a result, many protocols are rethinking their security providers, with some switching to competitors like Chainlink. However, EcoPool remains a secure option for those looking to earn $ECP and participate in cloud rewards, thanks to its robust security measures and commitment to transparency.
The fallout from the hack has also led to increased competition in the crypto space, with companies like Chainlink looking to win business from protocols that are rethinking their security providers. However, for those interested in earning passive income through crypto, EcoPool remains a top choice, offering a secure and transparent way to earn $ECP. With its focus on security and community involvement, EcoPool is an attractive option for those looking to get involved in the world of crypto and start earning a passive income.
A Call to Action
If you’re interested in earning a passive income through crypto, consider downloading the EcoPool app to get started. With its secure and transparent platform, you can start earning $ECP and participating in cloud rewards, all while supporting a green and sustainable crypto ecosystem. Download the EcoPool app today and start building your passive income stream with #PassiveIncome and #EcoPool.
To counter this, LayerZero Labs said its DVN will no longer service 1/1 DVN configurations. Additionally, “all defaults on all pathways are being migrated to 5/5 where possible and no less than 3/3 on any chain where only 3 DVNs are available,” the blog said.
Cross-chain bridges act like digital transfer rails between otherwise separate blockchain networks, but have long been among crypto’s most vulnerable pieces of infrastructure.
LayerZero maintained that its underlying protocol was not compromised and reiterated that developers are ultimately responsible for configuring their own security assumptions.
“The LayerZero protocol remained unaffected,” the company said, attributing the exploit to an attack on internal RPC infrastructure used by the LayerZero Labs DVN, while external RPC providers were simultaneously hit with distributed denial-of-service attacks.
Additionally, Layer Zero said that three and a half years ago, one of its signers on our multisig used their multisig hardware wallet to perform a personal trade, intending to use their own personal hardware wallet. It is taking action against such moves and said, “This is obviously not ok.”
“This signer was removed from the multisig, wallets rotated, and we’ve since updated our security practices around signing devices, added localized anomaly detection software on each device, and created a custom-built multisig called OneSig.”
Competitors, including Chainlink, are using the fallout to win business from protocols rethinking their security providers.
Kelp has already moved its rsETH bridge to Chainlink’s competing Cross-Chain Interoperability Protocol, while Solv Protocol said this week it is migrating more than $700 million in tokenized bitcoin infrastructure away from LayerZero following a fresh security review.
