Skip to main content

Lightning network vulnerability discovered, upgrade immediately

 


The lightning vulnerability was made public on Oct 9.

Lightning network node operators running LND versions prior to the Oct. 1 version 0.11 upgrade have been urged to upgrade immediately after a vulnerability was discovered affecting LND versions 0.10 and below.

The vulnerability was made public in an Oct. 9 announcement from Lightning engineer Conner Fromknecht, Head of Cryptographic Engineering at Lightning Labs. 

Fromknecht said:

“While we have no reason to believe these vulnerabilities have been exploited in the wild, we strongly urge the community to upgrade to lnd 0.11.0 or above ASAP,”

Few details have been revealed so far, with Fromknecht assuring that the vulnerabilities will be disclosed in full on Oct. 20.

This is not the first time a vulnerability has been discovered in the Lightning network. 

Last year, Lightning Labs CTO, Olaoluwa Osuntokun, confirmed instances of Common Vulnerabilities and Exposures (CVE) “being exploited in the wild.”

Earlier this year, researchers warned about the privacy vulnerabilities in the Lightning network that could expose financial information of Bitcoin transactions that were believed to be anonymous.

Currently, Lightning Labs, Blockstream, and ACINQ are the three major teams working on the development of the Lightning network.

Source: cointelegraph.com


Comments

Post a Comment

Contact us

Name

Email *

Message *

Popular posts from this blog

For my haters

₿  This is for people who told me to not put my money in Bitcoin 10 years ago 😂 RIP doubters and haters. #Bitcoin 💀 pic.twitter.com/sbuDljJtMv — Carl ₿ MENGER ⚡️🇸🇻 (@CarlBMenger) May 13, 2025
Post a Comment
Read more

Coinbase to Require Recipient Information for Crypto Transfers From Users in Canada, Singapore and Japan

  Customers in those countries who send crypto outside their Coinbase accounts must provide recipients’ names, addresses and in some cases, additional information, as of early April. Cryptocurrency exchange Coinbase Global (COIN) will soon require its customers in Canada, Japan and Singapore who send cryptocurrency to another financial institution or exchange to provide the name, address and in the case of Japan, the destination wallet of the recipient. Coinbase has been sending notices to its customers in those countries that the changes will take effect in early April in order to comply with local travel rules in those places. Coinbase didn't immediately respond to requests for additional comment on the moves, but confirmed that they were taking place. The move  does not seem to be going over well  with Coinbase customers in those countries, who value the anonymity of transactions using cryptocurrency. According to a  FAQ provided by Coinbase , for Canadian users, ...
Post a Comment
Read more

Jupiter plugin on your site

 Jupiter launches Jupiter Plugin , a customizable plugin that doesn't require RPC. PANews reported on August 7th that Jupiter announced the launch of the Jupiter Plugin.  This is an open-source, lightweight, plug-and-play version of Jupiter that allows users to seamlessly integrate end-to-end swap functionality into their applications with minimal effort.  Users can deploy it by simply adding a few lines of code.  Seamless Integration Embed Jupiter's Swap functionality directly into your application without redirection.  Multiple display options: Choose between integrated, widget or modal display modes.  Customizable options: Configure the exchange form to suit your application needs.  No RPC: Plugins can be integrated without any RPC, Ultra is responsible for handling transaction sending, wallet balance and token information.  Ultra Mode: Access all Ultra Mode features. Enjoy!
Post a Comment
Read more