In an interesting tale of quick thinking, a cryptocurrency startup claims to have hacked its own customers to save their funds from a malicious third-party. Apparently, Komodo, which is a crypto-platform, discovered a vulnerability in its Agama Wallet, which potentially put funds of several Agama users at risk. In order to save these funds from hackers, for whom the impacted wallets would have been easy-pickings, Komodo used the same vulnerability to hack the user wallets and save as much as 8 million Komodos or KMD (which is roughly $12.48 million or Rs. 86.6 crores) and 96 Bitcoins or BTC (which is roughly $765,000 or Rs. 5.3 crores).
As per a blog post on Komodo’s official website, the blockchain platform on Wednesday was informed about an issue with one of the libraries used by the Agama wallet. This issue had potentially put the consumers using the Agama wallet to store their cryptocurrencies at risk. Without waiting to make and release a patch and then hoping for the customers to apply it, the Komodo team decided to hack the wallets themselves before someone else can and transfer all the cryptocurrency to themselves in an effort to save it.
Komodo says the collected funds are present in RSgD2cmm3niFRu2kwwtrEHoHMywJdkbkeF (KMD) and 1GsdquSqABxP2i7ghUjAXdtdujHjVYLgqk (BTC) wallets and can be reclaimed by their owners. The consumer whose funds have been transferred to the company can use this form to reclaim them.
According to Komodo, all Agama Wallets downloaded from its website, Atomic explorer wallet, and Agama Mobile wallets are affected by the vulnerability. The Verus Agama, KomodoOcean QT, and Ledger Hardware wallet are not impacted.
Although the Komodo blog post doesn’t include any technical details of the vulnerability, npn package manager’s team has shared some information. npn’s service was used to push a malicious dependency to Agama wallet.
“The attack was carried out by using a pattern that is becoming more and more popular; publishing a “useful” package (electron-native-notify) to npm, waiting until it was in use by the target, and then updating it to include a malicious payload,” npm team wrote in a blog post.
2023 Ford F-Series Super Duty Is The First 5G Pickup Truck
The first 5G pickup truck with hotspot support has arrived in the form of the 2023 Ford F-series Super Duty, and it’s quite the mobile power plant.
2023 BMW Z4 Goes Heavy On The M
The 2023 BMW Z4 is making its worldwide debut in November 2022 with a redesigned facade, new paint colors, updated wheel designs, and new option packages.
The Hidden Feature On Android Phones That Can Be A Real Time Saver
Android has a bunch of features you’re probably unaware of, and the same is true for Google Assistant. One such wildly useful feature is called Shortcuts.
Nothing’s Ear (Stick) Teaser Tells Us A Whole Lot Of Nothing
The good news for fans of the relatively new company is that we know Nothing will be launching a new...
Intel Reveals Arc GPU Pricing As It Goes Head-To-Head With Nvidia
At $329, the Intel Arc A770 doesn’t directly compete with the RTX 3070, but it’s vying for a spot among...
Apple Stage Manager’s iPadOS 16 Surprise Could Save You From Buying A New One
Among the older Apple iPad models that have officially received the nod (via Engadget) for Stage Manager on iPadOS 16 include...
LG’s Rollable Phone Is Dead, But Samsung Will Give You A Slidable Screen Instead
Choi didn’t go into detail about the screen resolution figures and whether the slideable concept was an OLED panel or...
Intel’s 13th-gen “Raptor Lake” CPUs are official, launch October 20
Enlarge / An overview of the improvements coming to Intel’s 13th-gen desktop chips. Intel If there’s one thing Intel has...
Social6 months ago
Web.com website builder review
Social3 years ago
CrashPlan for Small Business Review
Gadgets4 years ago
A fictional Facebook Portal videochat with Mark Zuckerberg – TechCrunch
Cars4 years ago
What’s the best cloud storage for you?
Mobile4 years ago
Memory raises $5M to bring AI to time tracking – TechCrunch
Social4 years ago
iPhone XS priciest yet in South Korea
Security4 years ago
Google latest cloud to be Australian government certified
Social4 years ago
Apple’s new iPad Pro aims to keep enterprise momentum