Alleged Bithumb's employee is suspected of info leak

Crypto Korean have found the leaked mailing screenshots of Bithumb's employee
29 September 2017   3822

One of the employees of largest South Korea's cryptoexchange Bithumb is suspected of divulging the exchange's plans to integrate the Zcash (ZEC) and Qtum crypto currency. This is reported by Crypto Korean.

Screenshots of mailing is added to a Twitter post. Originally, they've appeared on a crypto releated Korean forum. 

ZEC spike
ZEC spike

As you can see on the screenshot above, price spike came emidiatly after the screenshots leak. According to the Whale Panda, suspicions regarding the disclosure of insider information are completely reasonable. On the chart attached to his tweet, it is shown that the price surge occurred just at the moment of the screenshot appearance on the popular Korean forum. Then another price jump is visible - already at the time of the immediate addition of Zcash to the listing of the Bithumb exchange.

Bithumb is the leader in the daily trading volume in South Korea and one of the largest crypto-exchange trading platforms in the world.

Cryptoexchanges rateCryptoexchanges rate 

The high liquidity of the exchange suggests that almost any cryptocurrency falling into the listing of Bithumb, as a rule, receives a sharp price jump. According to analysts, such incidents can adversely affect the reputation of Bithumb, especially in light of the significant tightening of the regulation of the crypto industry in South Korea.

Potentional Vulnerabilities Found in ETH 2.0

Least Authority have found potentional security issues in the network P2P interaction and block proposal system
26 March 2020   921

Technology security firm Least Authority, at the request of the Ethereum Foundation, conducted an audit of the Ethereum 2.0 specifications and identified several potential vulnerabilities at once.

Least Authority said that developers need to solve problems with vulnerabilities in the network layer of peer-to-peer (P2P) interaction, as well as in the block proposal system. At the same time, the auditor noted that the specifications are "very well thought out and competent."

However, at the moment there is no large ecosystem based on PoS and using sharding in the world, so it is impossible to accurately assess the prospects for system stability.
Also, information security experts emphasized that the specifications did not pay enough attention to the description of the P2P network level and the system of records about Ethereum nodes. Vulnerability risks are also observed in the block proposal system and the messaging system between nodes.

Experts said that in the blockchains running on PoS, the choice of a new block is simple and no one can predict who will get the new block. In PoS systems, it is the block proposal system that decides whose block will fall into the blockchain, and this leads to the risk of data leakage. To solve the problem, auditors suggested using the mechanism of "Single Secret Leader Election" (SSLE).

As for the peer-to-peer exchange system, there is a danger of spam. There is no centralized node in the system that would evaluate the actions of other nodes, so a “malicious" node can spam the entire network with various messages without any special punishment. The solution to this problem may be to use special protocols for exchanging messages between nodes.