• bitcoinBitcoin (BTC) $ 98,587.00
  • ethereumEthereum (ETH) $ 3,466.73
  • tetherTether (USDT) $ 1.00
  • solanaSolana (SOL) $ 262.44
  • bnbBNB (BNB) $ 674.26
  • xrpXRP (XRP) $ 1.57
  • dogecoinDogecoin (DOGE) $ 0.461084
  • cardanoCardano (ADA) $ 1.13
  • usd-coinUSDC (USDC) $ 0.998918
  • staked-etherLido Staked Ether (STETH) $ 3,463.67
  • tronTRON (TRX) $ 0.219052
  • avalanche-2Avalanche (AVAX) $ 43.43
  • shiba-inuShiba Inu (SHIB) $ 0.000027
  • the-open-networkToncoin (TON) $ 6.28
  • wrapped-stethWrapped stETH (WSTETH) $ 4,110.28
  • stellarStellar (XLM) $ 0.499715
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 98,408.00
  • polkadotPolkadot (DOT) $ 8.81
  • chainlinkChainlink (LINK) $ 17.77
  • bitcoin-cashBitcoin Cash (BCH) $ 529.62
  • suiSui (SUI) $ 3.62
  • wethWETH (WETH) $ 3,468.22
  • pepePepe (PEPE) $ 0.000022
  • leo-tokenLEO Token (LEO) $ 8.64
  • nearNEAR Protocol (NEAR) $ 6.49
  • litecoinLitecoin (LTC) $ 103.79
  • aptosAptos (APT) $ 13.17
  • uniswapUniswap (UNI) $ 10.99
  • wrapped-eethWrapped eETH (WEETH) $ 3,649.09
  • hedera-hashgraphHedera (HBAR) $ 0.154453
  • internet-computerInternet Computer (ICP) $ 11.82
  • crypto-com-chainCronos (CRO) $ 0.198387
  • usdsUSDS (USDS) $ 0.999182
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.598390
  • ethereum-classicEthereum Classic (ETC) $ 30.70
  • render-tokenRender (RENDER) $ 8.15
  • kaspaKaspa (KAS) $ 0.161782
  • bittensorBittensor (TAO) $ 539.29
  • ethena-usdeEthena USDe (USDE) $ 1.00
  • bonkBonk (BONK) $ 0.000050
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 1.43
  • vechainVeChain (VET) $ 0.044693
  • arbitrumArbitrum (ARB) $ 0.871263
  • whitebitWhiteBIT Coin (WBT) $ 24.63
  • dogwifcoindogwifhat (WIF) $ 3.49
  • daiDai (DAI) $ 0.999270
  • cosmosCosmos Hub (ATOM) $ 8.67
  • mantra-daoMANTRA (OM) $ 3.74
  • filecoinFilecoin (FIL) $ 5.43
  • blockstackStacks (STX) $ 2.13
  • okbOKB (OKB) $ 52.34
  • moneroMonero (XMR) $ 163.85
  • mantleMantle (MNT) $ 0.878236
  • optimismOptimism (OP) $ 2.30
  • injective-protocolInjective (INJ) $ 29.16
  • celestiaCelestia (TIA) $ 6.71
  • aaveAave (AAVE) $ 182.64
  • immutable-xImmutable (IMX) $ 1.62
  • fantomFantom (FTM) $ 0.931126
  • flokiFLOKI (FLOKI) $ 0.000260
  • algorandAlgorand (ALGO) $ 0.305980
  • the-graphThe Graph (GRT) $ 0.254249
  • sei-networkSei (SEI) $ 0.543274
  • bitget-tokenBitget Token (BGB) $ 1.57
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.998336
  • binance-peg-wethBinance-Peg WETH (WETH) $ 3,477.17
  • thorchainTHORChain (RUNE) $ 5.91
  • theta-tokenTheta Network (THETA) $ 1.96
  • ethenaEthena (ENA) $ 0.660840
  • rocket-pool-ethRocket Pool ETH (RETH) $ 3,864.14
  • raydiumRaydium (RAY) $ 6.09
  • based-brettBrett (BRETT) $ 0.179052
  • mantle-staked-etherMantle Staked Ether (METH) $ 3,629.08
  • worldcoin-wldWorldcoin (WLD) $ 2.41
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 98,757.00
  • jupiter-exchange-solanaJupiter (JUP) $ 1.19
  • ondo-financeOndo (ONDO) $ 1.09
  • pyth-networkPyth Network (PYTH) $ 0.431375
  • quant-networkQuant (QNT) $ 106.71
  • popcatPopcat (POPCAT) $ 1.57
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 3,555.55
  • solv-btcSolv Protocol SolvBTC (SOLVBTC) $ 98,305.00
  • makerMaker (MKR) $ 1,719.76
  • arweaveArweave (AR) $ 23.22
  • bitcoin-svBitcoin SV (BSV) $ 72.40
  • gatechain-tokenGate (GT) $ 11.26
  • galaGALA (GALA) $ 0.034756
  • matic-networkPolygon (MATIC) $ 0.600045
  • msolMarinade Staked SOL (MSOL) $ 324.64
  • kucoin-sharesKuCoin (KCS) $ 11.47
  • bittorrentBitTorrent (BTT) $ 0.000001
  • flowFlow (FLOW) $ 0.854107
  • peanut-the-squirrelPeanut the Squirrel (PNUT) $ 1.24
  • beam-2Beam (BEAM) $ 0.023925
  • starknetStarknet (STRK) $ 0.590717
  • flare-networksFlare (FLR) $ 0.023573
  • lido-daoLido DAO (LDO) $ 1.39
  • eosEOS (EOS) $ 0.792154
  • tezosTezos (XTZ) $ 1.18
  • jasmycoinJasmyCoin (JASMY) $ 0.024141

How Does OpenSea Reward White Hats? – NFT

0 70

How Does OpenSea Reward White Hats? - NFT

With the surge in blockchain tech over the last few years, we have seen a surge in malicious users trying to drain funds from the system.

OpenSea is one of the leading NFT marketplaces on the web, seeing USD $2B in volume in the last 30 days. Home to some of the most popular collections in the NFT space, users flock to the site to get their hands on BAYC, Cool Cats and more.

Rug, the owner and operator of Rug.Tech and their team uncovered a potential market toppling OpenSea bug. The response from OpenSea was less than ideal.

Finding bugs is often lucrative, especially in blockchain. Companies are willing to pay millions for discovery of mission critical bugs. Opensea however pays next to nothing for discovering potentially platform ending errors in their codebase. (Thread)https://t.co/WJV3DIQIae

— fuckingrug.eth ⬛️ (@FUCKINGRUG) November 7, 2021

In an interview with Altcoin Buzz, Rug says “Typical blockchain bounties of this magnitude topple into the millions quickly”

With no agreements signed with OpenSea, Rug shared information about the bug and OpenSea’s offer to them.

A bad actor could have easily used this knowledge to mint fake blue chip NFTs, seemingly created by verified wallets. This would have caused a frenzy buy to get in on the new project “dropped” by the creator.

— fuckingrug.eth ⬛️ (@FUCKINGRUG) November 7, 2021

Rug tells us, “For example, I could launch a fake Bored Apes project from their official OS account”. A potentially market crippling bug that could trick users into spending millions on fake collections.

And how much did OpenSea offer Rug and his team that found a bug that could have potentially saved OS hundred of millions of dollars?

3ETH or ~USD 15K.

This was the first time Rug dealt with OpenSea in this capacity. And it will be the last.

“To be honest, if the bug wasn’t this horrible we would have said fuck em. But this could have toppled the market entirely”, Rug said. “They offered ‘more than 3 ETH’ when I pressed but took the offer back after we helped patch the bug”.

The bug Rug and the team behind Rug.Tech saved OpenSea millions. It also maintains the entire objective of NFTs. This stops buyers from buying fake blue-chip NFTs, which would hurt the credibility of ALL NFTs. NFTs are verifiable, original tokens that you cannot duplicate on-chain. If that goes out the window, so does the entire NFT market.

A Dangerous Precedent to Set

Not rewarding good actors who are trying to help the community will only attract bad actors trying to do the opposite. Only offering USD 15k equivalent for a bug that would potentially cost the market hundreds of millions of dollars is a dangerous precedent to set.

Why would someone work on or notify OpenSea of a market-saving bug anymore?

Where is the motivation if other companies are offering millions of dollars?

How Does OpenSea Reward White Hats? - NFT

Blockchain exploit bounties via immunefi.com

With plenty of other options available, White Hats will flock to platforms that are willing to reward them. Not only that, but white hats may take the next steps into their own hands in the future.

Rug said this be the last time Rug.Tech works in any capacity with OpenSea directly. “In the future, we will take other routes to bring attention to bugs we find”.

OpenSea went down shortly after this original thread was posted, but is since back live.

Source

Leave A Reply

Your email address will not be published.