Over 70% ICOs Have Smart Contracts Vulnerabilities

As researchers report, only one ICO held in 2017 did not contain any critical flaws
26 June 2018   1508

Security researchers from Positive found on average five vulnerabilities in each ICO, held last year. This is reported Bleeping Computer.

According to researchers, only one ICO project didn't contain bugs.

The study found that 71% of the projects contained vulnerabilities in smart contracts. Among the common problems, analysts pointed out the inconsistency with the ERC-20 standard, the incorrect generation of random numbers and other significant shortcomings.

Experts said that such vulnerabilities appear due to lack of proper qualification of programmers and insufficient testing of source code.

Most of the security breaches analysts found in ICO-projects of mobile applications development. Among the common vulnerabilities were named: unsafe data transmission, unreliable storage of user data in phone backups and disclosure of the session identifier.

Some vulnerabilities in web applications were aimed at attacking investor funds. For example, because of a lack of proper security, hackers could register a domain similar to ICO, create phishing sites, thereby deceiving investors.

According to the research, every third project contained vulnerabilities that allow hackers to access data and savings of companies-organizers. Analysts also noted that many initiators of ICO did not use two-factor authentication for important accounts.

Old Korean Social Network to Close After Tokensale

Cyworld platform started operating back in 1999 and it conducted an IEO at CoinZest this year
14 October 2019   49

Investors who acquired the clink cryptocurrency issued by the South Korean social network Cyworld are worried about the status of their investments due to the company's sudden closure, reports Korea Times. Some of them are ready to go to court.

The Cyworld platform was launched in 1999 and was especially popular among the country's population until the mid-2000s. The company, however, failed to see the trend towards the development of mobile solutions on time and as a result lost its position in the market. On October 1, it closed her platform without posting any warnings to users.

At the same time, the Clink site was unavailable, and Cyworld management continues to ignore the numerous requests of investors. The Korean exchanges CoinZest and BitSonic, where Clink is still being traded, are considering delisting the asset. Industry officials say Clink's investor losses will be at least 1 billion won ($ 845,000).

Clink's primary distribution was through IEO through the CoinZest platform earlier this year and, according to the Korea Times, it was the company's attempt to bring a fading social network back to life. A total of 24 million Clink tokens were sold for a total of 480 million won ($ 400,000).

In the second half of 2019, employees who have not received salaries since the end of 2018 began to leave the company en masse. Since the start of trading, the Clink price has fallen from 26 won to 0.19 won. According to the Coingecko portal, Clink's current capitalization and revolving volume are unknown, while the marginal issue volume is 10 billion units.