The Maker Foundation is introducing a new security proposal after a well-known software engineer revealed that a malicious actor with enough Maker could steal all of the collateral in MakerDAO, taking with him over $340 million.
In a recent Medium post, freelance developer Micah Zoltu revealed that anyone with approximately 80,000 MKR could wipe out all of the collateral in MakerDAO. This includes DAI and SAI, as well as all the assets in other integrated systems, such as Compound and Uniswap.
The Maker Foundation failed to implement more stringent safeguards.
The lack of protocols regarding emergency shutdowns and governance delays allows malicious actors to steal all of the collateral in MarkerDao.
"An attacker could do the following: acquire 80,000 MKR through whatever means possible. Create an executive contract that is programmed to transfer all collateral from Maker to you. Immediately vote on the contract. Immediately activate the contract. [And,] ride off into the sunset with 340M USD worth of ETH," explained Zoltu.
A few hours after Zoltu published the infamous article, MakerDAO released an official statement claiming that measures would be taken to fix this loophole.
The firm introduced the Governance Security Module into the core protocol.
"The GSM is designed to give the MKR token holders a chance to review any changes that will go into the system and act accordingly if those changes are deemed to be malicious," reads the announcement.
Despite the flaw that Zoltu found in MakerDAO's protocol, it seems like the team acted quickly.
The same can be seen in the price of Maker, which was not affected by the news.
Developer says $340M of collateral in MakerDAO could have been easily wiped out
gepubliceerd op Dec 10, 2019
by Cryptoslate | gepubliceerd op Coinage
Coinage
Vermeld in dit artikel
Recent nieuws
Alles zien
Blockchain Bites: Bitcoin's Run, Uniswap's Hemorrhaging Value, Anchorage's Banking Bid
Bitcoin is nearing all-time highs in price and market cap last set three years ago.
Japan's megabanks to lead experiment with digital yen
We have, in order, Cheese Bank with a $3.3 million theft, Akropolis with its $2 million loss, Value DeFi with a whopping $6 million exploit and finally Origin Protocol's loss of $7 million.
Number of new Bitcoin addresses spikes amid growing FOMO
Japan's three largest banks, as part of a group of 30 private sector actors, are set to collaborate on an experiment with a digital yen.
Not just Wall Street: Quant trader explains why Bitcoin price is going up
Sam Trabucco, a quantitative trader at Alameda Research, believes four general factors are pushing up the price of Bitcoin.