Fun

News Feed - 2023-08-01 09:08:00

Tom Blackstone12 hours agoConsenSys releases ‘fuzzing’ tool to test smart contract vulnerabilitiesDiligence Fuzzing lets developers introduce random and invalid data points to find security flaws.5722 Total views3 Total sharesListen to article 0:00NewsJoin us on social networksBlockchain technology firm ConsenSys publicly released its “Diligence Fuzzing” tool for smart contract testing, according to an Aug. 1 announcement. The new tool produces “random and invalid data points” to find vulnerabilities in contracts before they are launched.


Over $2.8 billion was lost in decentralized finance hacks in 2022. According to ConsenSys, these losses are leading developers to embrace more sophisticated testing tools to help find vulnerabilities before attackers do.


The new tool used to be available in a closed beta version, where developers needed to get approval for access. This approval process is no longer necessary as of Aug. 1. Diligence Fuzzing is also now integrated with smart contract toolkit Foundry and features a free version for developers who want to test it out before spending any money.Diligence Fuzzing tutorials. Source: Consensys


Related:Crypto payment gateway CoinsPaid suspects Lazarus Group in $37M hack


In a conversation with Cointelegraph, ConsenSys security services lead Liz Daldalian explained how the tool works in more detail. Developers can annotate their contracts using a machine language called “Scribble,” also developed by ConsenSys. Once they do this, the annotations will be understood by the fuzzing tool. The tool produces “unexpected” inputs so as to test whether the contract can be forced to produce unintended actions.


ConsenSys security researcher Gonçalo Sá said the tool is not a “black box fuzzer.” It does not produce completely random data. Instead, it is a “grey-box fuzzer” that employs an understanding of the program’s current state to reduce the types of data produced, increasing the tool"s efficiency.


Sá has seen developers becoming more interested in fuzzing recently. As Foundry has become more popular, developers have started to use its default black-box fuzzer and have grown accustomed to using it. On the other hand, some users want a more sophisticated fuzzer than the default one, which he argued Diligence Fuzzer could provide. He said:“People are now trying to harness the power of the different types of security tools that they have in their hands. And Foundry [has] a black box fuzzer that is really easy to use. [...] So people now are starting to understand the power of fuzzing. [...] And they are looking for more powerful tools.”


Smart contract hacks have continued to pose a problem for users. Excluding rug pulls and phishing scams, over $471.43 million was lost from Web3 security vulnerabilities in the first half of 2023. Daldalian cautioned that Diligence Fuzzing is not a “silver bullet” that would eliminate all smart contract hacks. However, she argued that it is “one tool in an arsenal that developers can use in order to write more secure smart contracts,” which can at least set the Web3 community on a path to minimize losses from these attacks.# Blockchain# Adoption# Cybersecurity# ConsenSys# Developers# Hacks# DeFiAdd reactionAdd reactionRelated NewsHow to actually spend your Bitcoin, ExplainedAI can be a ‘creative amplifier’ — Grammy chief exec Harvey Mason Jr.Crypto hacks and exploits snatch over $300M in Q2 2023: ReportBug bounties can help secure blockchain networks, but have mixed resultsEra Lend on zkSync exploited for $3.4M in reentrancy attackBNB Smart Chain hit with copycat Vyper attack, $73K exploited

News Feed

Helen Partz10 hours agoEOS Foundation urges creditors to reject $22M Block.one settlementThe EOS Network Foundation has called on plaintiffs to drop the $22-million settlement with Block.one weeks after initiating a new
Digital Collectible Owners Continue to Take Loans out Using NFTs as Collateral
Digital Collectible Owners Continue to Take Loans out Using NFTs as Collateral While non-fungible token (NFT) collectibles have become a hot commodity over the last 12 months, a nu
Dogecoin ETF Filing Takes Market By Storm, Can Positive Sentiment Trigger 200% Rise To $1 ATH?
Este artículo también está disponible en español. REX Shares, a financial services company known for its innovative approach to ETFs, recently submitted filings for ETFs
Ethereum Flashes Golden Cross Signal – Can Bulls Push ETH To $3,000?
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
Coinbase Issues a Public Apology to EU and UK Customers — Did Not Address Its Global Issues
Coinbase Issues a Public Apology to EU and UK Customers — Did Not Address Its Global Issues Cryptocurrency exchange Coinbase published a statement addressing t
Moody’s Downgrades US Banking Sector to Negative After Collapse of Three Major Banks
Moody"s Downgrades US Banking Sector to Negative After Collapse of Three Major Banks After the failure of three major U.S. banks last week, with two of them being the second and th
WATCH: What Are the Main Takeaways From Deribit’s $1.3 Million Flash-Crash?
  Delphi Digital Co-Founder Yan Liberman joined CoinDesk’s Brad Keoun on Monday, Nov. 4, to talk about last week’s flash crash on Deribit, a Netherlands-based cryptocu
Chinese Tea Retailer Joins the Crypto Mining Industry After Hiring Two Roles to Lead Its ‘Bitcoin Business Plan’
Chinese Tea Retailer Joins the Crypto Mining Industry After Hiring Two Roles to Lead Its "Bitcoin Business Plan" A Chinese tea retailer is looking to make its in
South African Retailer Pick n Pay Now Accepting Payments via BTC at All Its Stores
South African Retailer Pick n Pay Now Accepting Payments via BTC at All Its Stores Pick n Pay, one of South Africa’s leading retailers, reportedly now accepts bitcoin as pay
Spot Ether ETFs will come down to a 5-person vote: Gensler the decider?
Brayden Lindrea4 hours agoSpot Ether ETFs will come down to a 5-person vote: Gensler the decider?It was speculated that Gensler’s vote secured the launch of spot Bitcoin ETFs in January — and the same five commission
Bear or bull: Survey reveals 49% are bullish about crypto
Jesse Coghlan7 hours agoBear or bull: Survey reveals 49% are bullish about cryptoA recent CoinGecko survey of 2,500 respondents shows that just under half are currently bullish about crypto, and a quarter haven’t worke
Tristan Greene5 hours agoVisa launches global AI advisory practice focused on generative systemsVisa’s new artificial intelligence advisory practice will leverage more than 1,000 analysts and consultants around the glo