all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Numbers turned weapons: DoS in Osmosis’ math library

Add to bookmarks
Oct. 23, 2023, 7:20 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

By Sam Alws


Trail of Bits is publicly disclosing a vulnerability in the Osmosis chain that allows an attacker to craft a transaction that takes up a disproportionate amount of compute time on Osmosis nodes compared to the amount of gas it consumes. Using the vulnerability, an attacker can halt the Osmosis chain by spamming validators with these transactions. After we informed the Osmosis developers about this bug, they performed a hard fork that fixed the vulnerability, avoiding the attack. …

attacker bits compute dos gas library math nodes numbers sam trail of bits transaction vulnerability weapons

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Linux Trojan - Xorddos with Filename eyshcjdmzg, (Mon, Apr 29th) 3 hours ago | malware.news
ddos dshield filename files +8
CISO Perspectives: Protecting Legacy Network Devices with ZTNA 6 hours ago | malware.news
attention aware ciso customers +20
London Drugs pharmacy closes all stores to respond to cyber incident 8 hours ago | malware.news
article canada closures cyber +11
HPE security advisory (AV24-232) 9 hours ago | malware.news
advisory article canadian canadian centre for cyber security +7
SonicWall security advisory (AV24-233) 9 hours ago | malware.news
advisory article canadian canadian centre for cyber security +7
Critical infrastructure cyberattacks pushed NSA to unmask thousands of U.S. identities through spying law 9 hours ago | malware.news
act critical critical infrastructure cyberattacks +14
Change Healthcare incident caused by compromised Citrix credentials 10 hours ago | malware.news
article ceo change change healthcare +15
Stolen Citrix Credentials Led to Change Ransomware Attack 11 hours ago | malware.news
access attack authentication ceo +23
AI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more. - SWN … 11 hours ago | malware.news
article chrome fcc ftc +9

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Cloud Security Engineer

@ Gainwell Technologies | Any city, OR, US, 99999
View on infosec-jobs.com

Federal Workday Security Lead

@ Accenture Federal Services | Arlington, VA
View on infosec-jobs.com

Workplace Consultant

@ Solvinity | Den Bosch, Noord-Brabant, Nederland
View on infosec-jobs.com

SrMgr-Global Information Security - Security Risk Management

@ Marriott International | Bethesda, MD, United States
View on infosec-jobs.com

Sr. Security Engineer - Data Loss Prevention

@ Verisk | Jersey City, NJ, United States
View on infosec-jobs.com
View more jobs