Lightning Network first faced the vulnerability, Lightning Labs stressed no update or risk of losing money

On September 11, according to lightning network developers, the old version of Lightning Network software has serious security vulnerabilities. If users do not update, they may lose money.

As early as August 30, Lightning Network developer Rusty Russel first disclosed the vulnerability , and on Wednesday, Lighto Labs chief technology officer Olaoluwa Osuntokun confirmed this.

It is unclear whether there are losses to users (or, if any, how much), and how many users are affected (Note: One of the characteristics of Lightning Networks is that it is anonymous).

Osuntokun warned on the developer mailing list that multiple versions of lightning network nodes are vulnerable to attack and they should be updated immediately, adding that:

"We have confirmed instances where CVE vulnerabilities have been abused."

As of now, Lightning Network is an experimental layer-2 expansion solution designed to allow for almost no-cost transactions, making it possible to purchase daily transactions such as coffee with bitcoin.

However, the existence of CVE vulnerabilities suggests that this technology still has problems with any code financial products.

“Security issues have been discovered in various lightning network products, which can cause users to lose money,” Russel wrote in his initial post. “All details will be released within 4 weeks (2019-09-27), please Upgrade before this."

Osuntokun stressed that the lightning network is still in its infancy.

P4

"Please upgrade to the latest version because they are not risky. These new software are:

  1. Lnd 0.7.1
  2. C-lightning 0.7.1
  3. Eclair 0.3.1

This is also a good opportunity to remind us of the limitations of the Lightning Network to mitigate the losses of funds in the early stages, and vulnerabilities generally exist. (Translator's Note: Developers have imposed a limit on the number of lightning networks in the early days, the purpose is to prevent the immature lightning network from causing users to lose too much money, which is also a foresight .)

Don't invest more than the amount of money you can afford on the lightning network! It is reported that the affected lightning network software includes all LND 0.70 and below, C-Lightning 0.70 and below and E Clair 0.3 and below.

We will continue to update Blocking; if you have any questions or suggestions, please contact us!

Share:

Was this article helpful?

93 out of 132 found this helpful

Discover more

Market

This country has 200,000 BTCs and 200,000 BCHs, which may be higher than the UK's gold reserves in the future.

I don't know if you still remember, according to a press release issued by the South East European Law Enforceme...

Blockchain

Market analysis on September 30: BTC weekly line is not optimistic, you need to be cautious when you are long

Author | Hash sent analysis team The trend of automation is getting more and more obvious, can bitcoin over-the-count...

Blockchain

A French court ruling claims Bitcoin is equivalent to currency, recognizing it as a valuable asset

According to Bitcoinist reported on March 7, a French court ruling acknowledged the value of Bitcoin and showed that ...

Blockchain

Blockchain data analysis lets you see the counterparties

By analyzing the blockchain data set, we will have a better and clearer understanding of cryptocurrencies. (Image sou...

Blockchain

Market Analysis: BTC fell for the first time this month, appearing at the top of the stage

Author | Hash sent analysis team The trend of automation is getting more and more obvious, can bitcoin over-the-count...

Blockchain

Analysis: why Bitcoin will rise periodically around halving

With less than 3 months, Bitcoin will usher in a third halving in May 2020. Now that the price of Bitcoin has exceede...