The Gas Siphon Attack allows anyone to siphon value from many exchanges in the form of gas refunds, a mechanism built directly into the Ethereum protocol. Users can write a simple script that continuously drains unprotected exchange hot wallets of all of their ETH. Until this was responsibly disclosed, many exchanges were affected with varying degrees of severity.
How it happened, who was affected, and the technical details behind the attack are discussed during the presentation. The talk dives into the details of the refund mechanism built into the Ethereum network, and how it can be maliciously abused. The presentation explains who is vulnerable and what they can do about it.
Finally, the talk covers different ways to protect yourself and your dapp from both known and unknown exploits. Preventative measures are presented that will allow for protection from these types of attacks.
Creating an account on our site will allow you to customize your news stream and unlock additional functionalities!
The primary benefit of registring an account is that will give you the ability to customize your news feed and
select the sources from which your news are displayed.
In addition to this, registered users can
'Like' specific news items, thus showing their support and appreciation for the item
Comment on news items and rate comments
Propose new 'tags' on news items to improve searchability
The ability to engage in all of these actions is driven by a site-specific internal virtual currency
which we call Kreds. In order to encourage our users to use their moderation and
participation abilities responsibly, each action you perform will cost you a certain amount of Kreds.
You are automatically awarded a certain amount of Kreds every day and can earn Kreds by leaving comments
or propose tags which the community then approves through the on-site voting capabilities.
You have to be logged in to vote up news.
You don't have enough Kreds to execute this action.