Ethereum Mist Browser Security Alert - Stay Safe

in #ethereum7 years ago

If you're using Mist browser version Beta v0.9.3 or below, you should avoid browsing to untrusted sites.

According to a blog post published a few hours ago on Ethereum blog:

Due to a Chromium vulnerability affecting all released versions of the Mist Browser Beta v0.9.3 and below, we are issuing this alert warning users not to browse untrusted websites with Mist Browser Beta at this time. Users of “Ethereum Wallet” desktop app are not affected.

The problem relies not on the Mist code itself, but somewhere in the middle of the stack development, namely at the Electron level. Citing more form the blog post above, we learned that:

The layer between Mist and Chromium, Electron, is a project led by GitHub that aims to ease the creation of cross-platform applications using JavaScript. Recently, Electron hasn’t kept up to date with Chromium, leading to an increasing potential attack surface as time passes.

A core problem with the current architecture is that any 0-day Chromium vulnerability is several patch-steps away from Mist: first Chromium needs to be patched, then Electron needs to update the Chromium version, and finally, Mist needs to update to the new Electron version.

So, if you do you use Mist, better stay safe than be sorry.

I'm a serial entrepreneur, blogger and ultrarunner. You can find me mainly on my blog at Dragos Roua where I write about productivity, business, relationships and running. Here on Steemit you may stay updated by following me @dragosroua.


Dragos Roua

You can also vote for me as witness here:
https://steemit.com/~witnesses

If you're new to Steemit, you may find these articles relevant (that's also part of my witness activity to support new members of the platform):

#security #bug #mist #news
7 years ago in #ethereum by
$22.96
  • Past Payouts $22.96
  • - Author $19.73
  • - Curators $3.22
66 votes
Reply 6
Sort:  
  • Trending
    • [-]
     7 years ago 

    thanks for this useful information

    $0.35
    • Past Payouts $0.35
    • - Author $0.26
    • - Curators $0.09
    1 vote
    Reply
    [-]
     7 years ago 

    ethereum doesn't seem very secure...it get's hacked a lot doesn't it?

    $0.16
    • Past Payouts $0.16
    • - Author $0.12
    • - Curators $0.03
    2 votes
    Reply
    [-]
     7 years ago 

    Thanks @dragosroua for information, your's posts always helpful for us.

    $0.00
      Reply
      [-]
       7 years ago 

      Good information and interesting, thank you for sharing our hope will always be the best

      $0.00
        Reply
        [-]
         7 years ago 

        thank you for sharing . your's posts always helpful for us.

        $0.00
          Reply
          [-]
           7 years ago 

          Thanks for sharing this update time to stay safe :)

          $0.00
            Reply

            Coin Marketplace

            STEEM 0.21
            TRX 0.20
            JST 0.035
            BTC 91274.52
            ETH 3158.75
            USDT 1.00
            SBD 3.10