Research
·
Invocation Security: Navigating Vulnerabilities in Solana CPIs
Cross-program invocation (CPI) is the mechanism on Solana through which one program calls another. It's used for system
Blog
Security research and insights from the Asymmetric Research team.
Featured
Ghost in the Block: Ethereum Consensus Vulnerability
In this blog post, we will show how a small difference in SSZ deserialization between the Prysm and Lighthouse clients could have allowed an attacker to severely degrade Ethereum consensus.
Circle's CCTP Noble Mint Bug
We privately disclosed a vulnerability to Circle via their bug bounty program. The vulnerability could have been exploited by circumventing the CCTP message sender verification process to mint fake USDC tokens on Noble.
Evmos Precompile State Commit Infinite Mint
This post details a vulnerability we identified in Evmos, an EVM-compatible Cosmos chain, that could have been exploited to mint infinite amounts of $EVMOS tokens. Due to EVM state commits during precompile execution, it could cause a mismatch between the state held within EVM and the Bank module.
Latest
Invocation Security: Navigating Vulnerabilities in Solana CPIs
Cross-program invocation (CPI) is the mechanism on Solana through which one program calls another. It's used for system
Research
·
Corrupt Commitments: Proposer Equivocation Bug in Helix MEV Relay
This blogpost details a vulnerability identified in Titan's Helix MEV Relay which could be abused by trusted proposers to perform equivocation attacks, during which private transaction information is prematurely revealed, leading to potential transaction reordering.
Ghost in the Block: Ethereum Consensus Vulnerability
In this blog post, we will show how a small difference in SSZ deserialization between the Prysm and Lighthouse clients could have allowed an attacker to severely degrade Ethereum consensus.
Circle's CCTP Noble Mint Bug
We privately disclosed a vulnerability to Circle via their bug bounty program. The vulnerability could have been exploited by circumventing the CCTP message sender verification process to mint fake USDC tokens on Noble.
Evmos Precompile State Commit Infinite Mint
This post details a vulnerability we identified in Evmos, an EVM-compatible Cosmos chain, that could have been exploited to mint infinite amounts of $EVMOS tokens. Due to EVM state commits during precompile execution, it could cause a mismatch between the state held within EVM and the Bank module.
Research
·
Cosmos IBC Reentrancy Infinite Mint
This post discusses a vulnerability in ibc-go, a reference implementation of the Cosmos Inter-Blockchain Communication (IBC) protocol. A reentrancy vulnerability during the handling of timeout messages could have allowed an attacker to mint an infinite amount of IBC tokens on affected Cosmos chains.
Research
·
Ethereum Log Confusion in Polygon's Heimdall
In this post, we describe a vulnerability in Heimdall, the validator software of the Polygon Proof-of-Stake (PoS) blockchain. This flaw, if exploited, could have allowed a rogue/compromised validator to take over the Heimdall consensus layer and inject fraudulent events into the StakeSync mechanism.