Fun

Euler announces 29 audit reports after $4M spent to shore up security

News Feed - 2024-08-12 11:08:00

Christopher Roark10 hours agoEuler announces 29 audit reports after $4M spent to shore up securitySome vulnerabilities in Euler v2 were found and resolved, and a subsequent $1.25 million bug bounty contest found no vulnerabilities of medium or greater severity.1136 Total viewsListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTCOINTELEGRAPH IN YOUR SOCIAL FEEDFollow ourSubscribe onCrypto lending platform Euler Finance has announced the results of 29 audit reports from 12 different cybersecurity firms regarding its “v2” relaunch. According to the announcement, the reports show that all security issues were resolved. The protocol also held a public $1.25 million post-audit bug bounty that resulted in no medium or higher severity issues being found.Euler v2 audits. Source: Euler


In total, more than $4 million was spent to shore up Euler’s security in anticipation of the relaunch, the announcement stated.


The previous version of Euler was exploited for $195 million in a flash loan attack on March 13, 2023. The attacker subsequently returned all of the funds.


According to the announcement, the new version of Euler “has undergone one of the most expensive and comprehensive security processes for any DeFi protocol to-date.”


Euler’s decentralized autonomous organization, EulerDAO, allocated more than $11 million to the development team in order to develop v2, more than $4 million of which went to security. With these security funds, the team hired new staff tasked with making the protocol adhere to the ISO27001 standards used by banks and defense companies.


Various outside experts were brought in to devise attack vectors and challenge Euler v2’s security. These experts included two security engineers from Web3 security firm Certora, Yield protocol co-founder Alberto Cuesta Cañada and Spearbit security researchers Cmichel and StErMi, among others.


Once the code was completed, the team hired 12 cybersecurity firms to audit each of the Euler modules, and a total of 29 audits have been completed so far.


The auditors included Spearbit, Certora, Hunter Security, Trail of Bits, Zellic, OpenZeppelin, Chain Security, Hunter Security, Omniscia, yAudit, Ruptura and others. The auditors found two critical severity and five high severity vulnerabilities, all of which were subsequently resolved.Euler v2 auditing firms. Source: Euler


When the third-party audits were completed, the team launched a $1.25 million bug bounty contest to help determine if the auditors had missed any vulnerabilities. The bug bounty participants were unable to find any critical, high or medium-severity flaws. The team awarded a total of $200,000 to participants who found low-severity vulnerabilities.


In addition to these security improvements, v2 will provide new features such as customizable vaults, synthetic assets and a fee auction mechanism, according to a blog post the team published on February 22.


Related:Euler Finance attack: How it happened, and what can be learned


The original version of Euler was exploited through a flash loan attack in March 2023. The attacker used two separate accounts. The first account borrowed from the protocol and then used a “donate” function to force itself into default.


Once it was in default, the attacker’s second account liquidated the first one. Because of the generous discounts given to liquidators in Euler v1, the attacker was able to obtain a greater value of assets in the second account than they lost in the first one, allowing them to profit more than $195 million.


Following the attack, the exploiter returned all of the stolen funds just 23 days later. The Euler attack was the largest decentralized finance exploit of 2023.


Magazine: Chinese boomers joining crypto tapper cults, WazirX fallout worsens: Asia Express# Ethereum# Hackers# Lending# Cybersecurity# Hacks# DeFiAdd reaction

News Feed

Savannah Fortis5 hours agoGermany launches dog-themed NFTs to fetch cyber talent: Nifty Newsletter, June 21–28The German foreign service created a dog-themed NFT collection in the form of a treasure hunt to recruit and
Paypal’s Venmo Launches ‘Cash Back to Crypto’ Feature to Auto Purchase Cryptocurrencies
Paypal"s Venmo Launches "Cash Back to Crypto" Feature to Auto Purchase Cryptocurrencies Venmo, a Paypal service, has introduced the “Cash Back to Crypto&rd
Dogecoin Price Could Shoot Up To $2.74 – Here’s The Support Level To Watch
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
Amaka Nwaokocha14 hours agoMeta dissolves responsible AI division amid restructuringThe restructuring comes as the parent company of Facebook nears the end of its “year of efficiency.”16437 Total views41 Total shares
Binance says it trained investigators in Nigeria under government cooperation
Ana Paula Pereira7 hours agoBinance says it trained investigators in Nigeria under government cooperationThe relationship between Binance and the Nigerian government has drastically changed in recent months, according to
David Attlee4 hours agoSEC accuses Binance of noncooperation, court unseals case documents: Law DecodedThe legal struggle between the SEC and Binance.US continues, with the company hitting new lows in trading volume.1018
Marcel Pechman8 hours agoBitcoin futures premium hits 18-month high — Time to flip bullish?The Bitcoin futures premium surge is having traders ask whether this is excitement or a return to the average after a multimont
Proof-of-Work Ban Removed From Europe’s Proposed Crypto Regulation
Proof-of-Work Ban Removed From Europe’s Proposed Crypto Regulation A text threatening to prohibit cryptocurrencies relying on energy-intensive proof-of-work mining has been delet
Bitcoin Scarcity May Spark Explosive Surge, Bank Study Shows
Reason to trust Strict editorial policy that focuses on accuracy, relevance, and impartiality Created by industry experts and meticulously reviewed The highest standards in reporting and pu
Brayden Lindrea18 hours agoBlackRock has ‘50% chance’ of getting spot Bitcoin ETF approved: AnalystBloomberg’s senior ETF analyst believes BlackRock has an even chance of getting its Bitcoin ETF green-lit, as Grays
JPMorgan CEO Jamie Dimon: US-China Tensions, Russia-Ukraine War ‘Far More Concerning’ Than Recession
JPMorgan CEO Jamie Dimon: US-China Tensions, Russia-Ukraine War "Far More Concerning" Than Recession JPMorgan Chase CEO Jamie Dimon says the tensions between the U.S. and China and
JUST IN: $118 Million of Plustoken BTC on the Move Again – New Dump Incoming?
JUST IN: $118 Million of Plustoken BTC on the Move Again – New Dump Incoming? Plustoken’s stash of bitcoin is on the move again. The haul of ill-gotten gains, amassed dur