Vulnerability and Safety of Funds Results to 0x v2.0 DEX Protocol Being Suspended
Decentralized exchange (DEX) project’s team announced on the July 13 published Medium post that a vulnerability in its code made the firm to suspend its 0x (ZRX) decentralized exchange (DEX) protocol’s Ethereum (ETH) smart contract.
The 0x team supposedly learned about the exchange smart contract vulnerability through samczsun — a third-party security researcher.
Subsequently, after careful evaluation, the team decided to suspend Asset Proxy contracts alongside the exchange’s contract.
Through the vulnerability, an attacker would invade the site and put in particular invalid signatures. Per the announcement, no one had been able to exploit that vulnerability; therefore, no funds got lost. Users will only have to contend with the service’s temporary suspension:
“Unfortunately, this also means the currently deployed 0x contracts cannot process trades and are unable to be used. A patched version of the Exchange contract — that we are confident fixes this vulnerability — and new AssetProxy contracts are being deployed to the Ethereum mainnet and we expect them to be ready to use later tonight.”
⭐ ⭐
Fortunately, the team assured users that ZRX token contract was not affected by the vulnerability, and as a result, the safety of user funds is guaranteed. As they thanked security researchers for their job, white hat hackers were also invited to register their participation in 0x’s bug bounty program and allow community members to identify any potential vulnerabilities in the system.
ZRX became the first ERC20 token to officially be listed on the cryptocurrency exchange Coinbase in October last year.
In early May, Tron Foundation saved its blockchain from crashing after it identified a certain fixed vulnerability.
Source: https://cointelegraph.com/news/0x-dex-protocol-suspended-because-of-vulnerability-funds-safe
Gloss