Solana Hacked: Ed25519 Digital Signature Algorithm – Critical Vulnerability Explained!

Read Time:1 Min, 36 Sec

Solana $SOL reputation is turnishing. A poor implementation of Ed25519, a popular digital signature algorithm, has left dozens of cryptography libraries such as Phantom vulnerable to attacks.

solana
Solana (SOL)
Rank: 17
$ 13.60
Price (BTC)
Ƀ0.00080799
Marketcap
$ 4.96 B
Volume
$ 282.35 M
24h Change
3.44%
Total Supply
535.57 M SOL

According to Bloomberg press release, “estimates of the damage vary. Just over $5.2 million in cryptoassets have been stolen so far from more than 7,900 Solana wallets, according to blockchain forensics firm Elliptic. Security company PeckShield said four Solana wallet addresses drained approximately $8 million from victims.”

ADVERTISEMENT

What Is Solana ($SOL)?

Solana is a highly functional open source project that banks on blockchain technology’s permissionless nature to provide decentralized finance (DeFi) solutions. While the idea and initial work on the project began in 2017, Solana was officially launched in March 2020 by the Solana Foundation with headquarters in Geneva, Switzerland. Reference(1)

Another theory may suggest the Solana hack is due to wallets using compromised code that exposes private keys. If so, you’d want to move funds offline into a cold storage hardware wallet or an exchange with high liquidity.

Where’s your Ed at?

Ed25519 is often used as a modern replacement for the Elliptic Curve Digital Signature Algorithm (ECDSA). Ed25519 is more open, secure, and faster than ECDSA, which is why it has become very popular in many sectors, especially in blockchain and cryptocurrency platforms.

ADVERTISEMENT: Content resumes below

In cryptography, it’s good hygiene to avoid accessing the private key many times. If they allowed the public key derivation on each signing invocation, then this implies they need to access it twice, once to sign, and once to derive the public key. However, the modification also creates a security loophole in the library.

Numerous security incidents have shown that poor random generation can result in private keys being leaked or stolen. One notable example was the private key leaks of PlayStation 3, whose technology relies on the ECDSA algorithm.

Last Updated on 08/03/2022 by Emmanuel Motelin

EXPLORE MORE ACROSS THE WEB

Tagged : # # # # # #

ADVERTISEMENT: Learn more

MOTELIN.ORG – Emmanuel Motelin (Official Website)

Emmanuel Motelin primarily focuses on new innovation in computational technology & security.


ADVERTISEMENT


bitcoin
Bitcoin (BTC) $ 16,836.47 0.82%
ethereum
Ethereum (ETH) $ 1,233.93 1.27%
tether
Tether (USDT) $ 1.00 0.01%
bnb
BNB (BNB) $ 283.80 1.63%
usd-coin
USD Coin (USDC) $ 1.00 0.01%
binance-usd
Binance USD (BUSD) $ 1.00 0.09%
xrp
XRP (XRP) $ 0.383211 1.66%
dogecoin
Dogecoin (DOGE) $ 0.0959 3.37%
cardano
Cardano (ADA) $ 0.309037 2.16%
matic-network
Polygon (MATIC) $ 0.888115 1.85%
polkadot
Polkadot (DOT) $ 5.27 3.41%
staked-ether
Lido Staked Ether (STETH) $ 1,219.55 1.21%
litecoin
Litecoin (LTC) $ 77.13 1.32%
shiba-inu
Shiba Inu (SHIB) $ 0.000009 1.67%
okb
OKB (OKB) $ 20.92 0.61%
dai
Dai (DAI) $ 1.00 0.07%
solana
Solana (SOL) $ 13.60 3.44%
tron
TRON (TRX) $ 0.053269 0.20%
uniswap
Uniswap (UNI) $ 6.00 1.55%
avalanche-2
Avalanche (AVAX) $ 13.20 2.28%
leo-token
LEO Token (LEO) $ 3.78 3.78%
chainlink
Chainlink (LINK) $ 6.85 3.00%
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 16,776.23 0.96%
cosmos
Cosmos Hub (ATOM) $ 9.56 4.96%
the-open-network
The Open Network (TON) $ 1.82 2.04%
ethereum-classic
Ethereum Classic (ETC) $ 18.71 3.36%
monero
Monero (XMR) $ 141.96 0.71%
stellar
Stellar (XLM) $ 0.084283 1.75%
bitcoin-cash
Bitcoin Cash (BCH) $ 109.19 0.88%
quant-network
Quant (QNT) $ 116.90 3.27%
crypto-com-chain
Cronos (CRO) $ 0.064296 2.70%
algorand
Algorand (ALGO) $ 0.221497 5.17%
filecoin
Filecoin (FIL) $ 4.32 5.27%
near
NEAR Protocol (NEAR) $ 1.69 4.53%
apecoin
ApeCoin (APE) $ 3.88 6.68%
vechain
VeChain (VET) $ 0.018738 1.90%
hedera-hashgraph
Hedera (HBAR) $ 0.046973 2.55%
internet-computer
Internet Computer (ICP) $ 4.18 4.58%
eos
EOS (EOS) $ 0.999212 5.35%
flow
Flow (FLOW) $ 1.04 5.92%
elrond-erd-2
MultiversX (Elrond) (EGLD) $ 44.12 2.33%
frax
Frax (FRAX) $ 0.999568 0.01%
trust-wallet-token
Trust Wallet (TWT) $ 2.45 5.53%
terra-luna
Terra Luna Classic (LUNC) $ 0.000165 2.66%
axie-infinity
Axie Infinity (AXS) $ 8.62 4.11%
the-sandbox
The Sandbox (SAND) $ 0.58064 4.87%
tezos
Tezos (XTZ) $ 0.987556 2.41%
theta-token
Theta Network (THETA) $ 0.873775 2.72%
aave
Aave (AAVE) $ 60.83 3.51%
huobi-token
Huobi (HT) $ 6.33 4.22%
%d bloggers like this: