Exploring Cardano: Inner Workings and Advantages of this Cryptocurrency
Seville.- Economy.- Innova.- STSA inaugurates its new painting and sealing hangar in San Pablo, for 18 million
Innova.- More than 300 volunteers join the Andalucía Compromiso Digital network in one month to facilitate access to ICT
Innova.-AMP.- Ayesa acquires 51% of Sadiel, which will create new technological engineering products and expand markets
The European Parliament supports the new fiscal rules adapted to the situation by country
Agreement between the Government and Navarra to protect traffic competition in the community after the annulment of the Supreme Court
Ayuso's partner proposed to the Prosecutor's Office to accept 8 months in prison and pay more than half a million euros to avoid trial
Enerside closes the sale to Chint of a 400 MW photovoltaic and storage project in Italy
How Blockchain in being used to shape the future
Not just BTC and ETH: Here Are Some More Interesting Coins Worth Focusing on
Looking for video games that value the neighborhoods of Valencia
UPV researchers improve the efficiency of air conditioning systems using a geothermal heat pump
València is committed to citiverse and smart tourism to be "the reference technological hub of the Mediterranean"
Valencia displays its "innovative and technological potential" at the Emerge Americas event in Miami
A million people demonstrate in France against Macron's pension reform
Russia launches several missiles against "critical infrastructure" in the city of Zaporizhia
A "procession" remembers the dead of the Calabria shipwreck as bodies continue to wash up on the shore
Prison sentences handed down for three prominent Hong Kong pro-democracy activists
ETH continues to leave trading platforms, Ethereum balance on exchanges lowest in 3 years
Investors invest $450 million in Consensys, Ethereum incubator now valued at $7 billion
Alchemy Integrates Ethereum L2 Product Starknet to Enhance Web3 Scalability at a Price 100x Lower Than L1 Fees
Mining Report: Bitcoin's Electricity Consumption Declines by 25% in Q1 2022
Oil-to-Bitcoin Mining Firm Crusoe Energy Systems Raised $505 Million
Microbt reveals the latest Bitcoin mining rigs -- Machines produce up to 126 TH/s with custom 5nm chip design
Bitcoin's Mining Difficulty Hits a Lifetime High, With More Than 90% of BTC Supply Issued
The Biggest Movers are Near, EOS, and RUNE during Friday's Selloff
Global Markets Spooked by a Hawkish Fed and Covid, Stocks and Crypto Gain After Musk Buys Twitter
Bitso to offset carbon emissions from the Trading Platform's ERC20, ETH, and BTC Transactions
Draftkings Announces 2022 College Hoops NFT Selection for March Madness
5. December 2018 share Facebook Twitter LinkedIn xing mail
On the 1. December Tencent Security announced on the Chinese Social Media platform Weibo, the discovery of a bug in the NEO-Blockchain. Accordingly, the operator of NEO-Nodes of crypto-piracy, if you use the default configuration. It is said in the message of Tencent:
"The Monitoring of the famous Blockchain-project NEO [...] promoted the risk of Remote-piracy to light. When a user launches the NEO-Node with the default configuration, and the Wallet opens, it can be stolen, the digital currency from the distance.“
Tencent recommends that the Node-operators three things:
1. Update of the NEO-Clients to the latest Version
2. Renunciation of the use of the RPC function, and the Change of the BindAdress in the configuration file to point to 127.0.0.1
3. If not, RPC-change Port and HTTPS-based JSON-RPC interface to be activated and the Firewall policies accordingly
So far, So FUD to adjust. What is not made, in contrast to Tencent's warning so quickly, was the answer of NEO-co-founder Erik Zhang, who had only a few hours to wait.
Erik Zhang: "Normal" users don'tZhang affected tried to calm the common NEO-Hodler. "Normal User" would have to make, therefore, no thoughts, because the RPC function is disabled by default. The access RPC can only be carried out through the NEO-CLI Client. Since it is a command-line utility, running non-technical users also risk to open due to careless Configuration changes hackers the door. Zhang includes:
"in conclusion, no risk for the conventional NEO-user Remote-piracy"
Since Zhang the vulnerability is denied, one can assume, for operators of NEO-Nodes is quite in danger or there was, robbed. Presumably Zhang also points to the Bounty program, that NEO has been launched this year under the name "NEO Vulnerability Bounty Program". Who Bug finds a relevant and, above all, unknown NEO, you may claim a reward of NEO.
In the guidelines of the Bounty program, it is called:
"If vulnerabilities are published, before NEO has repaired or published, the reward."
Tencent will be able to claim for the discovery of the NEO-Bugs so no reward for themselves.
BTC-ECHO
