Solana Hacked: Ed25519 Digital Signature Algorithm – Critical Vulnerability Explained!

Read Time:1 Min, 36 Sec

Solana $SOL reputation is turnishing. A poor implementation of Ed25519, a popular digital signature algorithm, has left dozens of cryptography libraries such as Phantom vulnerable to attacks.

solana
Solana (SOL)
Rank: 9
$ 41.05
Price (BTC)
Ƀ0.00176198
Marketcap
$ 14.28 B
Volume
$ 614.76 M
24h Change
1.05%
Total Supply
508.18 M SOL

According to Bloomberg press release, “estimates of the damage vary. Just over $5.2 million in cryptoassets have been stolen so far from more than 7,900 Solana wallets, according to blockchain forensics firm Elliptic. Security company PeckShield said four Solana wallet addresses drained approximately $8 million from victims.”

ADVERTISEMENT

What Is Solana ($SOL)?

Solana is a highly functional open source project that banks on blockchain technology’s permissionless nature to provide decentralized finance (DeFi) solutions. While the idea and initial work on the project began in 2017, Solana was officially launched in March 2020 by the Solana Foundation with headquarters in Geneva, Switzerland. Reference(1)

Another theory may suggest the Solana hack is due to wallets using compromised code that exposes private keys. If so, you’d want to move funds offline into a cold storage hardware wallet or an exchange with high liquidity.

Where’s your Ed at?

Ed25519 is often used as a modern replacement for the Elliptic Curve Digital Signature Algorithm (ECDSA). Ed25519 is more open, secure, and faster than ECDSA, which is why it has become very popular in many sectors, especially in blockchain and cryptocurrency platforms.

ADVERTISEMENT: Content resumes below

In cryptography, it’s good hygiene to avoid accessing the private key many times. If they allowed the public key derivation on each signing invocation, then this implies they need to access it twice, once to sign, and once to derive the public key. However, the modification also creates a security loophole in the library.

Numerous security incidents have shown that poor random generation can result in private keys being leaked or stolen. One notable example was the private key leaks of PlayStation 3, whose technology relies on the ECDSA algorithm.

Last Updated on 08/03/2022 by Emmanuel Motelin

EXPLORE MORE ACROSS THE WEB

Tagged : # # # # # #

ADVERTISEMENT: Learn more

MOTELIN.ORG – Emmanuel Motelin (Official Website)

Emmanuel Motelin primarily focuses on new innovation in computational technology & security.


ADVERTISEMENT


bitcoin
Bitcoin (BTC) $ 23,298.24 0.47%
ethereum
Ethereum (ETH) $ 1,714.48 0.01%
tether
Tether (USDT) $ 1.00 0.01%
usd-coin
USD Coin (USDC) $ 1.00 0.06%
bnb
BNB (BNB) $ 324.38 1.80%
xrp
XRP (XRP) $ 0.375533 0.18%
cardano
Cardano (ADA) $ 0.533979 2.77%
binance-usd
Binance USD (BUSD) $ 1.00 0.08%
solana
Solana (SOL) $ 41.05 1.05%
polkadot
Polkadot (DOT) $ 8.78 2.00%
dogecoin
Dogecoin (DOGE) $ 0.069554 0.25%
avalanche-2
Avalanche (AVAX) $ 28.16 5.56%
shiba-inu
Shiba Inu (SHIB) $ 0.000012 0.25%
staked-ether
Lido Staked Ether (STETH) $ 1,654.16 0.05%
dai
Dai (DAI) $ 1.00 0.10%
matic-network
Polygon (MATIC) $ 0.915835 0.51%
tron
TRON (TRX) $ 0.070079 0.24%
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 23,269.23 0.46%
ethereum-classic
Ethereum Classic (ETC) $ 38.23 0.33%
okb
OKB (OKB) $ 18.27 1.15%
leo-token
LEO Token (LEO) $ 4.89 1.39%
litecoin
Litecoin (LTC) $ 61.47 0.09%
ftx-token
FTX (FTT) $ 30.84 0.30%
uniswap
Uniswap (UNI) $ 8.90 0.26%
chainlink
Chainlink (LINK) $ 8.29 5.35%
near
NEAR Protocol (NEAR) $ 5.02 1.14%
crypto-com-chain
Cronos (CRO) $ 0.148113 1.14%
cosmos
Cosmos Hub (ATOM) $ 11.58 7.90%
stellar
Stellar (XLM) $ 0.12401 0.98%
monero
Monero (XMR) $ 167.32 3.41%
flow
Flow (FLOW) $ 2.64 0.18%
bitcoin-cash
Bitcoin Cash (BCH) $ 142.73 0.22%
algorand
Algorand (ALGO) $ 0.35979 2.17%
vechain
VeChain (VET) $ 0.031647 1.21%
filecoin
Filecoin (FIL) $ 8.95 3.16%
apecoin
ApeCoin (APE) $ 7.23 1.83%
internet-computer
Internet Computer (ICP) $ 8.29 0.22%
decentraland
Decentraland (MANA) $ 1.07 0.80%
chain-2
Chain (XCN) $ 0.085327 0.53%
hedera-hashgraph
Hedera (HBAR) $ 0.077777 0.42%
tezos
Tezos (XTZ) $ 1.91 1.13%
the-sandbox
The Sandbox (SAND) $ 1.33 0.49%
quant-network
Quant (QNT) $ 126.93 2.23%
theta-token
Theta Network (THETA) $ 1.69 8.17%
axie-infinity
Axie Infinity (AXS) $ 18.80 3.35%
elrond-erd-2
Elrond (EGLD) $ 67.07 2.28%
aave
Aave (AAVE) $ 102.30 1.60%
frax
Frax (FRAX) $ 0.999401 0.03%
lido-dao
Lido DAO (LDO) $ 2.50 6.05%
eos
EOS (EOS) $ 1.24 0.34%
%d bloggers like this: