The Foundation IOTA resolved the vulnerability that allowed hackers to steal about 2 million dollars in tokens (MIOTA), and plans to reactivate its network on march 2, 2020, with which the interruption would be 17 days, until then. Through a long article, the organization, provided details of the attack of 12 February, which affected about 10 users of the wallet Trinity.In his article, the Foundation pointed out that the theft was the result of a detected vulnerability in the software (SDK) Moonpay, an application gateway for the exchange of MIOTA to fiat currency, which was built in wallet Trinity since November of 2019. According to statements of the co-founder of the Foundation IOTA Dominik Schiener, the 2 of march next will resume the main network of IOTA after an interruption of 17 days.The research, carried out in collaboration with the German Centre for Cybercrime and the Federal Bureau of Investigation of usa. UU., it was found that the hacker was in charge of the distribution of contents of Moonpay, infiltrating into the portfolio, and then distribute packages malware SDK (software development Kit) to the users and that way to take possession of your funds.
“The pressure on the release and the human error were added to the Foundation does not auditara the package NPM safer before integrating it. This was the weakness exploited by the attacker, one that probably could have been resolved if the Foundation had had a review process more extensive “.Press release from the Foundation IOTA.
The NPM, or Node Package Manager is a package manager, which allows you to have any library available with just one line of code, as a static file, avoiding the reception of an SDK malicious. The report describes that the malicious code is loaded in the local instance of the Trinity and, after the portfolio of the user it was releasing, desencriptaba the seed and sent it to a server controlled by the attacker. Before transferring the tokens, the hacker waited for the release of a new version of Trinity, it would overwrite the cache files of the wallet, and so would eliminate the traces of their attack.The network IOTA has been inactive for approximately 11 days. Breaking News reported on the 14th of February on the announcement of the organization of disconnecting the node is a “Coordinator” who validates the transactions in this network and will remain so until the 2nd of march, 17 days after its cessation.The nonprofit organization also explained that it is developing tools to transition users to transfer their funds from their existing accounts to the new. After the transition is complete, the Foundation will put the network online, and give you the details of the plan that will be activated to reimburse the funds to the victims of the attack.Days after the attack was launched the updated version of the wallet Trinity. Users should install this new version of the wallet to be able to check your balance and most recent transactions. In addition, you must change your password and store it in a key manager to strengthen the security of their tokens.