Exploiter Takes Away 200 WETH via Gnosis Chain’s Omni Bridge
BlockSec (an organization offering security infrastructure for blockchains) has asserted that an exploiter has been successful in taking away approximately 200 extra ETHW. As per BlockSec, the attacker utilized the Gnosis chain’s Omni bridge to transfer up to 200 WETH. To get the benefit of a vulnerability, the security provider added, and the exploiter replayed the message for another time. As a result, 200 extra 200 ETHW were received by the attacker.
Attacker Acquires 200 WETH Extra with Calldata Replay
While giving their remarks on the incident, ETHW stated that this situation is known as calldata replay. According to the platform, the respective event has taken place because of the vulnerability of a particular contract, rather than some transaction replay. It added that the bad actor attempted every method to link to Omni Bridge. The reason behind such a failure was that the bridges require to appropriately validate the cross-chain messages’ actual ChainID.
Denying the event to be a transfer replay on the level of a chain, it is likely to be a calldata replay and the weakness of a particular contract is responsible for such an episode. Just recently, notwithstanding the historic conversion of Ethereum to a POS mechanism, EthereumPoW declared to keep on mining the PoW-based version of ETH. The platform has issued a list of those mining pools which focus on carrying on mining activities following the mainnet launch of the ETHW token.
In the words of EthereumPoW, a few prominent mining pools will provide their services uninterruptedly. The cumulative number of the pools for ETHW mining is 19 among which EthwMine, 2miners, Nanopool, AntPool, Poolin, and F2Pool are the top ones. A noteworthy thing here is that the list takes into account a few pools which are associated with Russia, such as BaikalMine and Pool Moscow.
Unlike EthereumPoW, Ethermine Shuts Down Its Ethereum Mining
On the other hand, some Ukraine-based pools like UA Pool are also included among them. Dissimilar to Poolin and F2Pool, Ethermine went for terminating the services thereof related to the mining pool of Ethereum because of the network’s shift to PoS. In this respect, the venue has turned itself into a withdrawal-only mode. Rather, an exclusive staking service for Ethereum has been launched by the firm keeping in view the Ethereum Foundation’s vision of Ethereum based on a proof-of-stake consensus mechanism.
