火星财经消息,6月6日,安全工程师Taylor Hornby利用Anthropic Opus 4.8 AI模型发现Zcash严重漏洞后表示,已将Monero(XMR)加入审计队列,并计划未来对更多隐私币项目开展安全审查。此前,Hornby于5月29日发现Zcash Orchard隐私池存在关键漏洞,该漏洞自2022年5月以来一直未被察觉,理论上可能允许攻击者无限增发且无法被检测的虚假ZEC。负责开发的Shielded Labs于6月1日前完成紧急修复,并随后公开披露了漏洞详情。受此事件影响,ZEC在消息公布后24小时内一度下跌38%,市场担忧攻击者可能曾利用该漏洞从隐私池窃取资金而不留下链上痕迹。Hornby表示,他于今年4月受非营利组织Shielded Labs委托,负责在攻击者发现前识别协议漏洞。尽管具备利用漏洞获利的条件,他仍选择向开发团队报告问题,并称“无法接受这种背叛”。此外,Hornby计划申请Zcash社区资助,以支持后续安全研究工作。
Zcash Security Engineer to Audit Monero Following Discovery of Critical Vulnerability
MarsBitShare
Summary
A Zcash security breach prompted Taylor Hornby to prioritize an audit of a critical vulnerability in Monero. The flaw in Zcash’s Orchard pool permitted unlimited fake ZEC creation until June 1. Hornby, collaborating with Shielded Labs, disclosed the issue rather than exploiting it. ZEC dropped 38% following the disclosure. He plans to seek funding from Zcash for ongoing research.
Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information.
Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.