Fun

News Feed - 2023-08-01 09:08:00

Tom Blackstone12 hours agoConsenSys releases ‘fuzzing’ tool to test smart contract vulnerabilitiesDiligence Fuzzing lets developers introduce random and invalid data points to find security flaws.5722 Total views3 Total sharesListen to article 0:00NewsJoin us on social networksBlockchain technology firm ConsenSys publicly released its “Diligence Fuzzing” tool for smart contract testing, according to an Aug. 1 announcement. The new tool produces “random and invalid data points” to find vulnerabilities in contracts before they are launched.


Over $2.8 billion was lost in decentralized finance hacks in 2022. According to ConsenSys, these losses are leading developers to embrace more sophisticated testing tools to help find vulnerabilities before attackers do.


The new tool used to be available in a closed beta version, where developers needed to get approval for access. This approval process is no longer necessary as of Aug. 1. Diligence Fuzzing is also now integrated with smart contract toolkit Foundry and features a free version for developers who want to test it out before spending any money.Diligence Fuzzing tutorials. Source: Consensys


Related:Crypto payment gateway CoinsPaid suspects Lazarus Group in $37M hack


In a conversation with Cointelegraph, ConsenSys security services lead Liz Daldalian explained how the tool works in more detail. Developers can annotate their contracts using a machine language called “Scribble,” also developed by ConsenSys. Once they do this, the annotations will be understood by the fuzzing tool. The tool produces “unexpected” inputs so as to test whether the contract can be forced to produce unintended actions.


ConsenSys security researcher Gonçalo Sá said the tool is not a “black box fuzzer.” It does not produce completely random data. Instead, it is a “grey-box fuzzer” that employs an understanding of the program’s current state to reduce the types of data produced, increasing the tool"s efficiency.


Sá has seen developers becoming more interested in fuzzing recently. As Foundry has become more popular, developers have started to use its default black-box fuzzer and have grown accustomed to using it. On the other hand, some users want a more sophisticated fuzzer than the default one, which he argued Diligence Fuzzer could provide. He said:“People are now trying to harness the power of the different types of security tools that they have in their hands. And Foundry [has] a black box fuzzer that is really easy to use. [...] So people now are starting to understand the power of fuzzing. [...] And they are looking for more powerful tools.”


Smart contract hacks have continued to pose a problem for users. Excluding rug pulls and phishing scams, over $471.43 million was lost from Web3 security vulnerabilities in the first half of 2023. Daldalian cautioned that Diligence Fuzzing is not a “silver bullet” that would eliminate all smart contract hacks. However, she argued that it is “one tool in an arsenal that developers can use in order to write more secure smart contracts,” which can at least set the Web3 community on a path to minimize losses from these attacks.# Blockchain# Adoption# Cybersecurity# ConsenSys# Developers# Hacks# DeFiAdd reactionAdd reactionRelated NewsHow to actually spend your Bitcoin, ExplainedAI can be a ‘creative amplifier’ — Grammy chief exec Harvey Mason Jr.Crypto hacks and exploits snatch over $300M in Q2 2023: ReportBug bounties can help secure blockchain networks, but have mixed resultsEra Lend on zkSync exploited for $3.4M in reentrancy attackBNB Smart Chain hit with copycat Vyper attack, $73K exploited

News Feed

NFT Economy Grows Exponential: $1M in Non-Fungible Token Sales Last Week
NFT Economy Grows Exponential: $1M in Non-Fungible Token Sales Last WeekWhile a number of people are focused on decentralized finance (defi), the non-fungible token (NFT) industry h
UK Regulator Issues Crypto Ads Notice to 50 Firms — Says ‘This Is a Red Alert Priority’
UK Regulator Issues Crypto Ads Notice to 50 Firms — Says "This Is a Red Alert Priority" The U.K.’s advertising authority has sent an enforcement notice to more than 50 com
2 More Crypto Platforms Pause Withdrawals as Liquid Global and Salt Lending Cite Exposure to FTX
2 More Crypto Platforms Pause Withdrawals as Liquid Global and Salt Lending Cite Exposure to FTX On Nov. 15, 2022, the crypto exchange Liquid Global revealed that it has suspended
Zhiyuan Sun5 hours agoUniswap launches educational platform with DoDAOUniswap University is similar to learning academies created by centralized exchanges such as Binance, Bitget and Bybit.1464 Total views6 Total sharesL
Bitcoin price ATH in memes: ‘Same same, but different’
Helen Partz7 hours agoBitcoin price ATH in memes: ‘Same same, but different’Explore a collection of Bitcoin memes marking its latest all-time high (ATH) of $70,199.2056 Total views6 Total sharesListen to article 0:00
Reddit User Discovers 7zip File Possibly Linked to Julian Assange Hidden in Bitcoin Blockchain
Reddit User Discovers 7zip File Possibly Linked to Julian Assange Hidden in Bitcoin Blockchain According to a post on the Reddit community r/bitcoin, an old file was discovered tha
Helen Partz13 hours agoReddit prepares to drop Gen 4 collectible avatars on PolygonDespite the downturn in the NFT industry, Reddit continues to attract new holders of digital collectibles issued on the blockchain.2047 T
Alice Ivey9 hours agoCompiler vs. interpreter: Key differencesLearn about the crucial differences between compilers and interpreters and how they affect code execution and development.324 Total views13 Total sharesListen
Digital Currency Group CEO Barry Silbert Responds to Accusations by Gemini’s Cameron Winklevoss With Shareholders Letter
Digital Currency Group CEO Barry Silbert Responds to Accusations by Gemini"s Cameron Winklevoss With Shareholders Letter Barry Silbert, CEO of Digital Currency Group (DCG), has rel
Arijit Sarkar1 hour agoUK seeks six crypto investigators to beef up National Crime AgencyThe role demands candidates to have the ability to provide strategic and tactical advice to crypto investigations, among other inve
Crypto custody firm Bakkt faces delisting if shares stay under $1
Jesse Coghlan9 hours agoCrypto custody firm Bakkt faces delisting if shares stay under $1Bakkt has posted back-to-back losses and a plummeting share price since listing in October 2021 and the NYSE is threatening to pull
Tristan Greene3 hours agoCircle launches USDC stablecoin on Mercado Pago in ChileThe partnership will purportedly bring USDC to 2 million users in Chile.513 Total views3 Total sharesListen to article 0:00NewsJoin us on s