Parity replied to Cisco's vulnerability report

According to the representatives of Parity, vulnerabilities are fixed
12 January 2018   598

Parity Technologies said that the vulnerabilities found by the Cisco Systems Inc. have been fixed in new versions of the Ethereum client software.

As stated in the developers' statement, the JSON-RPC interface, which supports the function of cross-domain requests, could really provide attackers with public information about an account to create an application for "undesirable transactions" and provide these transactions for signature to the user.

However, the company emphasizes, a potential leak of information could not contain confidential information, including private keys. All problems associated with the JSON-RPC interface have been fixed in the latest Parity software updates.

In addition, developers have changed the basic settings of the function of cross-domain requests in order to avoid information leakage. Now users must manually add secure domains to the whitelist in order to allow Parity software to interact with them.

Parity wallet is well known in cryptocurrency world. In July, hackers stole millions of dollars thru the vulnerability, which was fixed in few lines or code. In November, 513774.16 ETH got "froze".

Parity Ethereum Client v2.0 to be Released

Developers have created Parity Ethereum exclusively for mining pools, exchanges and other infrastructure nodes
19 July 2018   504

Parity Technologies has introduced a new version of the full node software for the Ethereum network called Parity Ethereum v2.0.0.

This major release comes with some notable changes. First and most importantly, Parity Ethereum is built to serve as expert software for production use and shouldn’t be considered end-user software or an “Ethereum Wallet.” It is meant for mission-critical use in mining pools, exchanges, or any other type of infrastructure or service provider.
 

Parity Team

The Parity Ethereum client is able to interact with various consensus mechanisms, provides the choice between the Ethereum virtual machine (EVM) and the WebAssembly virtual machine (WasmVM), and it supports private transactions and the creation of special lists of nodes to restrict access to certain contracts.

Moreover, users should not perceive the new version of the software as a product for the end-user or Ethereum-purse, as the developers have created Parity Ethereum exclusively for mining pools, exchanges and other infrastructure nodes. This version is specialized.

The client also lacks a graphical user interface, known as the Parity wallet.