Solana Hacked: Ed25519 Digital Signature Algorithm – Critical Vulnerability Explained!

Read Time:1 Min, 36 Sec

Solana $SOL reputation is turnishing. A poor implementation of Ed25519, a popular digital signature algorithm, has left dozens of cryptography libraries such as Phantom vulnerable to attacks.

solana
Solana (SOL)
Rank: 11
$ 19.64
Price (BTC)
Ƀ0.00073853
Marketcap
$ 8.10 B
Volume
$ 320.66 M
24h Change
1.99%
Total Supply
557.93 M SOL

According to Bloomberg press release, “estimates of the damage vary. Just over $5.2 million in cryptoassets have been stolen so far from more than 7,900 Solana wallets, according to blockchain forensics firm Elliptic. Security company PeckShield said four Solana wallet addresses drained approximately $8 million from victims.”

Advertisement

What Is Solana ($SOL)?

Solana is a highly functional open source project that banks on blockchain technology’s permissionless nature to provide decentralized finance (DeFi) solutions. While the idea and initial work on the project began in 2017, Solana was officially launched in March 2020 by the Solana Foundation with headquarters in Geneva, Switzerland. Reference(1)

Another theory may suggest the Solana hack is due to wallets using compromised code that exposes private keys. If so, you’d want to move funds offline into a cold storage hardware wallet or an exchange with high liquidity.

Advertisement

Where’s your Ed at?

Ed25519 is often used as a modern replacement for the Elliptic Curve Digital Signature Algorithm (ECDSA). Ed25519 is more open, secure, and faster than ECDSA, which is why it has become very popular in many sectors, especially in blockchain and cryptocurrency platforms.

In cryptography, it’s good hygiene to avoid accessing the private key many times. If they allowed the public key derivation on each signing invocation, then this implies they need to access it twice, once to sign, and once to derive the public key. However, the modification also creates a security loophole in the library.

Numerous security incidents have shown that poor random generation can result in private keys being leaked or stolen. One notable example was the private key leaks of PlayStation 3, whose technology relies on the ECDSA algorithm.

Last Updated on 12/28/2022 by Emmanuel Motelin

EXPLORE MORE ACROSS THE WEB
Tagged : # # # # # #
Advertisement
bitcoin
Bitcoin (BTC) $ 26,587.12 1.58%
ethereum
Ethereum (ETH) $ 1,588.92 1.94%
tether
Tether (USDT) $ 1.00 0.01%
bnb
BNB (BNB) $ 210.80 1.70%
xrp
XRP (XRP) $ 0.509931 1.36%
usd-coin
USD Coin (USDC) $ 1.00 0.46%
staked-ether
Lido Staked Ether (STETH) $ 1,588.06 1.71%
dogecoin
Dogecoin (DOGE) $ 0.06148 1.37%
cardano
Cardano (ADA) $ 0.247233 2.12%
the-open-network
Toncoin (TON) $ 2.37 2.53%
solana
Solana (SOL) $ 19.64 1.99%
tron
TRON (TRX) $ 0.083247 1.66%
polkadot
Polkadot (DOT) $ 4.02 2.16%
matic-network
Polygon (MATIC) $ 0.525516 2.82%
litecoin
Litecoin (LTC) $ 64.66 0.67%
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 26,586.12 1.31%
shiba-inu
Shiba Inu (SHIB) $ 0.000007 1.35%
bitcoin-cash
Bitcoin Cash (BCH) $ 207.75 3.44%
dai
Dai (DAI) $ 0.999464 0.13%
chainlink
Chainlink (LINK) $ 6.74 1.67%
leo-token
LEO Token (LEO) $ 3.81 0.17%
true-usd
TrueUSD (TUSD) $ 0.997345 0.25%
uniswap
Uniswap (UNI) $ 4.24 2.29%
avalanche-2
Avalanche (AVAX) $ 8.88 0.65%
stellar
Stellar (XLM) $ 0.113358 3.26%
monero
Monero (XMR) $ 146.54 0.33%
okb
OKB (OKB) $ 43.02 0.52%
binance-usd
Binance USD (BUSD) $ 0.9995 0.18%
ethereum-classic
Ethereum Classic (ETC) $ 15.25 1.56%
cosmos
Cosmos Hub (ATOM) $ 7.24 0.10%
hedera-hashgraph
Hedera (HBAR) $ 0.050422 0.26%
filecoin
Filecoin (FIL) $ 3.23 3.59%
crypto-com-chain
Cronos (CRO) $ 0.051011 0.20%
lido-dao
Lido DAO (LDO) $ 1.49 4.03%
quant-network
Quant (QNT) $ 89.88 0.32%
internet-computer
Internet Computer (ICP) $ 2.91 2.52%
mantle
Mantle (MNT) $ 0.394322 1.90%
vechain
VeChain (VET) $ 0.017168 2.04%
aptos
Aptos (APT) $ 5.12 0.27%
maker
Maker (MKR) $ 1,317.26 0.88%
near
NEAR Protocol (NEAR) $ 1.13 1.82%
arbitrum
Arbitrum (ARB) $ 0.826999 2.02%
optimism
Optimism (OP) $ 1.30 6.00%
kaspa
Kaspa (KAS) $ 0.047926 4.11%
aave
Aave (AAVE) $ 63.16 1.25%
rocket-pool-eth
Rocket Pool ETH (RETH) $ 1,725.07 2.00%
the-graph
The Graph (GRT) $ 0.08807 1.84%
immutable-x
ImmutableX (IMX) $ 0.660069 22.13%
whitebit
WhiteBIT Coin (WBT) $ 5.32 0.15%
algorand
Algorand (ALGO) $ 0.097567 0.75%
%d bloggers like this: