Tron Discloses Critical Vulnerability Which Could Have Crashed Its Blockchain
The Tron Foundation disclosed a fixed critical vulnerability which could have crashed its blockchain on vulnerability disclosure platform HackerOne on May 2.
The disclosure further explains the impact of such an attack:
Using a single machine an attacker could send DDOS attack to all or 51% of the SR node and render Tron network unusable or make it unavailable.
The issue was first reported on January 14, but has been publicly disclosed only recently, after it was already fixed.
The cybersecurity researcher who discovered and disclosed the vulnerability was given a bounty of $1,500.
As Cointelegraph reported at the end of last year, white hat hackers were awarded $878,000 in bug bounties in 2018.