The worst thing about the ongoing @solana @phantom / @slope_finance

in Newcomers' Community2 years ago

FZP_egCWQAAhXdM.jpg

The worst thing about the ongoing @solana @phantom / @slope_finance hack is that people don't even understand yet how screwed they are. Here's why this is worse than it seems, and a clear way we #web3 citizens can prevent this in the future👇

First, a few misunderstandings out of the way.
This is not Solana team's fault: other wallets don't seem to be attacked We also truly feel for the affected ones that are sad right now, and we hate to stomp on their hope. But this is an important topic that has to be discussed.

The worst possible calamity that can happen to a network is the leaks of private keys/seed phrases. Why? Imagine the best possible outcome. Let's say @aeyakovenko decides to reverse the chain and refund the stolen balances back to their owners. And let's skip the side effects.

FZQBqHxWQAAdboX.jpg

Problem is, refunds would not go just to the owners, but also to the attacker. And since they have the private keys, after the network restart, they would just steal the funds again.

FZQCG3EWIAIv8qT.jpg

Essentially, the root of the problem is that Solana network has no way to distinguish between a real and a fake owner, to only allow the real owner to access the refund.
There are multiple ways to not let this problem happen, like multisignatures, hardware wallets, etc. but it's hard for people to set up and use them, so not many did. However, here is one more practical idea: vaults + decentralized two-factor authentication.

#solana #phantom #slope #web3
2 years ago in Newcomers' Community by
$0.00
    3 votes
    Reply 1
    Sort:  
  • Trending
    • [-]
     2 years ago 

    Hello @oxshafu, what a pleasure to welcome you to steemit which is a unique platform where you can find value in everything you like and want to share in a digital world of wide possibilities, I invite you to make your first achievement for this community of recent arrived with the following tips:

    ** PD: Don't forget your cover photo with your presentation poster and use the correct tags ( #achievement1, #introduceyourself, #tupais), once you make the corrections, answer me and name me in a comment and I'll come back **

    It is important that your presentation includes the answers to the following questions:

    • Your name and your age
    • Your current country of residence
    • Your area of ​​study or work
    • Your experience with cryptocurrencies
    • Your hobbies, passions and what you don't like
    • What kind of posts would you be interested in
    • What kind of posts you think you will create (These can change, so don't feel restricted!)
    • How and by whom did you find Steemit (name it) and what do you hope to achieve here

    You must make a "handmade" presentation poster and share a photo from the front holding it without effects or filters where both the poster and your face are appreciable, it must have the current date, your user and the word steemit.

    Learn all about the achievements for new users here

    Greetings 👍

    $0.00
      Reply

      Coin Marketplace

      STEEM 0.19
      TRX 0.12
      JST 0.028
      BTC 65566.66
      ETH 3559.87
      USDT 1.00
      SBD 2.48