Ledger pledges full compensation for victims of $600k ConnectKit exploit

cyptouser9 months agoCryptocurrencies News153

Hardware wallet provider Ledger has announced it will fully reimburse users impacted by the vulnerability that compromised its ConnectKit library last week.

Additionally, the firm promised to disable blind signing—a process where users approve transactions without verifying their content—on its devices for Ethereum virtual machine (EVM)-compatible decentralized applications (dApps) by June 2024.

$600k stolen

In a Dec. 20 statement on X (formerly Twitter), the firm revealed that its ConnectKit library compromise resulted in the theft of approximately $600,000 in digital assets from users who blind-signed on EVM dApps.

Ledger affirmed its commitment to compensating the affected individuals by February 2024 and disclosed its active engagement with these users.

On Dec. 14, CryptoSlate reported that Ledger’s ConnectKit library was hacked by attackers who replaced a genuine version with a malicious file that redirects funds to a wallet controlled by the hacker.

The breach impacted several prominent DeFi projects, including SushiSwap, which immediately advised their users not to interact with the frontend of their websites.

Bolstering security

While Ledger immediately pushed an update to rectify the situation, the firm has further pledged to continue its focus on bolstering security measures to safeguard the ecosystem and prevent future occurrences.

As part of this commitment, Ledger intends to collaborate with the dApp ecosystem to implement Clear Signing—a process allowing users to verify all transaction details before approving them—and phase out the Blind Signing feature from its devices by June 2024.

“Our commitment is to work with the community and DApp ecosystem to allow Clear Signing so users can verify all transactions on Ledger devices before signing. This will lead to a new standard to protect users and encourage Clear Signing across DApps,” Ledger wrote.

According to the firm, Clear Signing will empower users to verify all transactions on their devices before signing, serving as an effective measure to mitigate front-end attacks on cryptocurrency platforms.

It added:

“Front-end attacks have happened many times before and will continue to plague our ecosystem. The only foolproof countermeasure for this type of attack is to always verify what you consent to on your device. This is only possible with Clear Signing: meaning you can see and verify exactly what you sign on a secure display.”

The content on this website comes from the Internet. Due to the inconvenience of proofreading the authenticity and accuracy of the copyright or content of some content, it may be temporarily impossible to confirm the authenticity and accuracy of the copyright or content. For copyright issues or other issues caused by this, please Call or email this site. It will be deleted or changed immediately after verification.

related articles

Amazon, Microsoft AI partnerships face potential UK antitrust probe

The UK’s Competition and Markets Authority (CMA) has taken preliminary steps to investigate recent p...

CME gears up to launch spot Bitcoin trading, challenging Binance's dominance

The Chicago Mercantile Exchange (CME) is gearing up to introduce spot Bitcoin trading, responding to...

Price analysis 5/30: BTC, ETH, BNB, SOL, XRP, DOGE, TON, SHIB, ADA, AVAX

Price analysis 5/30: BTC, ETH, BNB, SOL, XRP, DOGE, TON, SHIB, ADA, AVAX

55966e89˃Bitcoin (BTC) remains in sideways price action, but a positive sign is that the investors h...

Debit card with crypto integration: Unlocking everyday transaction utility

Debit card with crypto integration: Unlocking everyday transaction utility

55966e89˃Renegade introduces a Visa card with integrated crypto features, aiming to seamlessly conne...

Eigen Labs acquires Rio Restaking, opens LRT code

Eigen Labs acquires Rio Restaking, opens LRT code

55966e89˃Eigen Labs, the company behind the EigenLayer protocol, has announced the acquisition of th...

Bitcoin bull flag joins MACD to tease new BTC price all-time high next

Bitcoin bull flag joins MACD to tease new BTC price all-time high next

55966e89˃Bitcoin (BTC) could be preparing to repeat its ascent to all-time highs from March, on-chai...