0x suspends its DEX after finding major security flaw

13 Jul, 2019
by David Robb
Security
0x suspends its DEX after finding major security flaw

The team behind 0x has shut down its decentralized exchange after a bug was found. No funds were affected, but all users were migrated to a newer version of the platform.

The 0x protocol is built on the Ethereum (ETH) blockchain, and was designed to allow the peer-to-peer exchange of crypto assets. Its associated ZRX token currently has a market cap of $153 million, and was listed on Coinbase towards the end of last year. 

According to a blogpost from 0x head Will Warren, the security flaw was spotted by third-party security researcher samczsun. The white hat hacker found an exploit in the 0x smart contract that would allow an attacker to fill certain orders with invalid signatures.

The post claims that the team "used the AssetProxyOwner contract to shut down the v2.0 Exchange and all AssetProxy contracts to prevent this vulnerability from being exploited. The contracts were shut down at approximately 7:45 PM PT. To the best of our knowledge, no one has exploited this vulnerability and no user funds have been lost". This latter statement was confirmed a few hours later. After another two hours, the team had created a patch for the software, and released contract addresses for users to update to.

A discussion arose on Twitter about how decentralized the 0x DEX could be, if the team was able to shut down trading in this way. While the team's governance of the network was praised, some claimed that their action is effectively the same as any other type of censorship.

Follow Chepicap now on Twitter, YouTubeTelegram and Facebook!

Bitcoin to hit $30K before next correction; TRON = ponzi scheme?!Subscribe to the Chepicap YouTube Channel for more videos!

Read more about: 0x (ZRX) DEX

Poll

Have you ever used a DEX?

(14 votes)

Add a comment

Check out the latest news

You will be logged out and redirected to the homepage