According to a SRLabs study, a third of Ethereum nodes use vulnerable client software, thereby putting the entire cryptocurrency network at risk of being hacked..
Earlier, the team of the hacker organization discovered a critical vulnerability in the Parity client, which allows an attacker to remotely shut down existing nodes using a DoS attack..
In mid-February, the problem was fixed with the release of a new version of the client. IN report researchers said that so far 30% of nodes do not use updated software.
SRLabs also points out that 7% of Parity nodes are still running a client version that contains a consensus vulnerability patched back in July last year. However, the situation with the Geth client is even worse..
According to research, 44% of Geth nodes are below version 1.8.20, which has an important security update released more than two months ago.
Unlike the previous one, this client does not provide an auto-update function..
The SRLabs team notes that the presence of a large number of outdated nodes, makes the entire Ethereum network vulnerable, as hackers can use them to attack. Disabling enough nodes will make it easier getting more than 51% of the total processing power, and a system failure will disrupt the platform.
Ethereum 2.0 | The risk vs rewards analysis
Timely updates are essential for the success of the cryptocurrency and the stability of the ecosystem as a whole. Recall that the recent bitcoin cash hard fork provoked a software error that led to the closure of empty blocks..
text: Ivan Malichenko, photo: firstpost