THELOGICALINDIAN - On February 10 the wellknown developer of Cydia and iOS Jailbreak Jay Freeman contrarily accepted as Saurik appear a Twitter cilia about a bug he begin in the Layer2 L2 ascent agreement accepted as Optimism According to Freeman the vulnerability which has been patched could accept accustomed an antagonist to actualize an absolute bulk of tokens
Cydia Creator ‘Saurik’ Discovers Optimism L2 Vulnerability
Jay Freeman is a arresting software developer who is able-bodied accepted for his iOS Jailbreak and Cydia tools. Freeman’s Cydia graphical user interface (GUI) was appear in February 2008, and it gives users with jailbroken iPhones the adeptness to download crooked software for the Apple smartphone operating arrangement iOS. Freeman afresh appear a blog post alleged “Attacking an Ethereum L2 with Unbridled Optimism,” which explains how he appear a analytical aegis affair to the developers of the L2 ascent band-aid Optimism.
Optimism’s L2 band-aid allows users to move ethereum for a atom of the cost. Currently, affective ether application Optimism can amount $0.56 per transfer as against to the L1 gas fees today which are $3.29 per transaction. To bandy bill onchain application L1 it will amount a user $16.47 in ether but application Optimism to bandy bill will amount $0.83. Freeman appear the Optimism vulnerability on February 2, 2022 and the bug has back been patched.
The advance would accept accustomed “an antagonist to carbon money on any alternation application their “OVM 2.0” angle of go-ethereum (which they alarm l2geth),” Freeman said. The developer added explained that he affairs to allocution about the Optimism vulnerability on February 18th at Ethdenver 2022. Freeman was additionally awarded a $2,000,042 compensation for advertent the bug and advice it to the team. The software engineer’s blog column describes how the antagonist could excellent an approximate abundance of tokens afore the bug was patched.
“The bug presented actuality — which I dub ‘Unbridled Optimism’ — can maybe be (crudely) modelled as a bug on the far ancillary of a ‘bridge,’” Freeman wrote. “But is absolutely a bug in the basic apparatus that executes acute affairs on Optimism. Exploiting this enables the antagonist to accept admission to an finer great cardinal of tokens (aka, the IOUs) on the far ancillary of the bridge. It is my altercation that this is added alarming than alone tricking the affluence into acceptance a withdrawal.” The developer continued:
The Pessimism Surrounding Cross-Chain Applications
In accession to the vulnerability begin in Optimism, Freeman discussed cross-chain arch technology in abundant detail. The developer mentioned that the aforementioned day he appear the bug to Optimism, the Wormhole arch was attacked. Freeman additionally affected aloft the Poly Network drudge in his post. “Even back hackers do abduct money from a bridge, the ramifications are limited,” Freeman’s blog column explains.
Freeman advertent the Optimism bug follows the bulk of hacks adjoin cross-chain bridges and the community’s newfound affair over the aegis of this advancing technology. The Cydia developer’s blog column mentions concepts like “’insurance policies’ adjoin crypto hacks.” Moreover, Ethereum (ETH) co-founder Vitalik Buterin afresh discussed apropos angry to the aegis of cross-chain arch platforms. “I am bleak about cross-chain applications,” a contempo Reddit column by Buterin declares.
What do you anticipate about Jay Freeman’s Optimism bug discovery? Let us apperceive what you anticipate about this accountable in the comments area below.
Image Credits: Shutterstock, Pixabay, Wiki Commons