The Tron Foundation, the organisation behind the cryptocurrency TRON (TRX) and its underlying protocol, has disclosed a vulnerability that could have put the entire Tron network at risk, industry website Cointelegraph has reported.
The foundation published a post on the HackerOne platform on May 2, saying that the network had been vulnerable to Distributed Denial of Service (DDoS) attacks.
“Using a single machine an attacker could send DDOS attack to all or 51% of the SR node and render Tron network unusable or make it unavailable,” the Tron Foundation wrote in a summary of the problem.
“A single request to submit a post to /wallet/deploycontract with several megabytes of bytecode along with CPU intensive long parsing will consume CPU for about 10 minutes while still holding several megabytes of bytecode in heap. With enough requests (let’s say 1K-10K depending upon available memory), it’s enough to use all the available threads to service incoming HTTP request, fill up the memory and render DDOS,” it explained in more detail.
The service has already been resolved and Tron has paid a $1,500 bounty to the cybersecurity researcher who discovered it.
TRX market performance
The TRON token experienced a sharp price decline earlier today, mirroring a larger crypto downswing that followed news that hackers had stolen around $41 million in Bitcoin from the world’s largest digital currency exchange Binance. Most major digital currencies tumbled following the news, but still managed to recover most of their losses later in the session. TRX has followed a similar pattern after falling to as low as $0.0235 in the opening hours of the session. In fact, the coin is currently the best performer in the crypto top 20.
In today’s trading, the TRON price stood at $0.0248, as of 14:34 BST. The digital coin has gained 3.3% in the past 24 hours. Its total market capitalisation currently stands $1.6 billion.
Featured image: Wit Olszewski/Shutterstock.com
More Resources