Verge (XVG) Hacked Again, Scrypt Mining Takes Over Entire Network
Cryptovest
Published May 23, 2018 01:39AM ET
Updated May 23, 2018 02:01AM ET
Verge (XVG) Hacked Again, Scrypt Mining Takes Over Entire Network
For all the talk of security and immutability, Verge (XVG) has seen another serious attack shake down credibility. Another hacking exploit accelerated mining on May 22, withdrawing significant XVG rewards to the hackers’ wallets, even after the reward halving.
What the project revealed was merely a DDOS attack. But there are reports the faults with XVG go much deeper.
https://twitter.com/vergecurrency/status/998764810698358786
The belief is that the Verge network saw another time warp exploit, minting 35 million coins ahead of schedule, on very low difficulty. Some believe the multi-algorithm mining approach for XVG may be to blame.
The crypto community is starting to see Verge as potentially a defunct project, unless the vulnerability is fixed. Even a hypothetical danger of transaction reversals defeats the purpose of a crypto coin.
https://twitter.com/SatoshiLite/status/999027979891044352
After the new mining exploit, XVG market prices slid again by 12% overnight, to $0.046, and the price drop may just be starting.
!XVG!
h2 How the Hack Worked/h2The Verge network accepts blocks with a timestamp of up to 2 hours away from the latest block time. The hacker was submitting blocks with a fake timestamp, older by one hour. However, the mining adjustment algorithm only takes into account recent blocks. This made difficulty fall to very low levels, sliding by 99.99% - and when the hackers caught up, they managed to mine weeks’ worth of coins within two hours.
But the more worrying part is that a malicious entity was able to take over the whole network and produce blocks with only one of the five algorithms - Scrypt. This mining approach, used also in Litecoin (LTC), is so common that an ASIC has been around for a long time. And while other workers on the Verge network were mining with consumer electronics, only a few ASIC could have taken over the entire hashing power of the network, taking the block rewards.
For now, XVG difficulty has recovered, but remains low compared to previous months. Despite the de facto 51% attack, there are no complaints of transactions rolled back, although that would be possible in theory. Instead, the aim was the mining bounty, estimated at $1.7 million if sold at market prices.
This article appeared first on Cryptovest
Get The News You Want
Written By: Cryptovest
Trading in financial instruments and/or cryptocurrencies involves high risks including the risk of losing some, or all, of your investment amount, and may not be suitable for all investors. Prices of cryptocurrencies are extremely volatile and may be affected by external factors such as financial, regulatory or political events. Trading on margin increases the financial risks.
Before deciding to trade in financial instrument or cryptocurrencies you should be fully informed of the risks and costs associated with trading the financial markets, carefully consider your investment objectives, level of experience, and risk appetite, and seek professional advice where needed.
Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. The data and prices on the website are not necessarily provided by any market or exchange, but may be provided by market makers, and so prices may not be accurate and may differ from the actual price at any given market, meaning prices are indicative and not appropriate for trading purposes. Fusion Media and any provider of the data contained in this website will not accept liability for any loss or damage as a result of your trading, or your reliance on the information contained within this website.
It is prohibited to use, store, reproduce, display, modify, transmit or distribute the data contained in this website without the explicit prior written permission of Fusion Media and/or the data provider. All intellectual property rights are reserved by the providers and/or the exchange providing the data contained in this website.
Fusion Media may be compensated by the advertisers that appear on the website, based on your interaction with the advertisements or advertisers.