{"id":387411,"date":"2021-12-30T04:20:18","date_gmt":"2021-12-30T01:20:18","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/polygon-upgrade-quietly-fixes-bug-that-put-24b-of-matic-at-risk\/"},"modified":"2021-12-30T04:20:18","modified_gmt":"2021-12-30T01:20:18","slug":"polygon-upgrade-quietly-fixes-bug-that-put-24b-of-matic-at-risk","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/polygon-upgrade-quietly-fixes-bug-that-put-24b-of-matic-at-risk\/","title":{"rendered":"# Polygon upgrade quietly fixes bug that put $24B of MATIC at risk"},"content":{"rendered":"<p>&#8220;<strong># Polygon upgrade quietly fixes bug that put $24B of MATIC at risk  <\/strong>&#8221;<br \/>\n<img decoding=\"async\" src=\"https:\/\/images.cointelegraph.com\/images\/840_aHR0cHM6Ly9zMy5jb2ludGVsZWdyYXBoLmNvbS91cGxvYWRzLzIwMjEtMTIvZTQzN2QxNjctMjE0Mi00YTAzLTgwYjAtNGVmZmE3ZDk5N2ZiLmpwZw==.jpg\" \/><\/p>\n<div class=\"post-content\" data-v-128018ef>Ethereum-based layer two scaling network Polygon has quietly fixed a vulnerability that put almost $24 billion worth of its native token MATIC at risk. <\/p>\n<p>According to a Dec. 29 blog post from Polygon, the \u201ccritical\u201d vulnerability in the network\u2019s Proof-of-Stake (PoS) Genesis contract was first highlighted by two whitehat hackers on Dec. 3 and Dec. 4 via blockchain security and bug bounty hosting platform Immunefi.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">All you need to know about the recent Polygon network update.<br \/>\u2705A security partner discovered a vulnerability<br \/>\u2705Fix was im<a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">media<\/a>tely introduced<br \/>\u2705Validators upgraded the network<br \/>\u2705No material harm to the protocol\/end-users<br \/>\u2705White hats were paid a bounty <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/t.co\/oyDkvohg33\">https:\/\/t.co\/oyDkvohg33<\/a><\/p>\n<p>\u2014 Polygon | $MATIC  (@0xPolygon) <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/0xPolygon\/status\/1476032036804513792?ref_src=twsrc%5Etfw\">December 29, 2021<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\nThe vulnerability put more than 9.27 billion MATIC at risk that is valued at around $23.6 billion at the time of writing, with the figure representing the vast majority of the token\u2019s total supply of 10 billion. <\/p>\n<p>Polygon noted that the bug was resolved at Block #22156660 via an \u201cEmergency Bor Upgrade\u201d to the Mainnet on Dec. 5 at around 7:27 am UTC. The network noted that a \u201cmalicious hacker\u201d managed to steal 801,601 MATIC ($2.04 million) before the bug was resolved. The blog post said:<\/p>\n<blockquote><p>\u201cThe Polygon core team engaged with the group and Immunefi\u2019s expert team  and immediately introduced a fix. The validator and full node communities were notified, and they rallied behind the core devs to upgrade 80% of the network within 24 hours without stoppage.\u201d<\/p><\/blockquote>\n<p>Polygon stated that the issue was fixed behind closed doors as it follows the \u201csilent patches\u201d policy introduced by the Go Ethereum (Geth) team in November 2020. Under the guidelines, projects or developers report on key bug fixes 4-8 weeks after they go live to avoid the risk of being exploited at the time of patching. <\/p>\n<p>According to <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/medium.com\/immunefi\/polygon-lack-of-balance-check-bugfix-postmortem-2-2m-bounty-64ec66c24c7d\">Immunefi<\/a>, Whitehat hacker \u201cLeon Spacewalker\u201d was the first to report on the security hole on Dec. 3 and will be rewarded with $2.2 million worth of stablecoins for their efforts, while the second unnamed hacker, referred  to as \u201cWhitehat2\u201d will receive 500,000 MATIC ($1.27 million) from Polygon.<\/p>\n<p><strong><em>Related: <\/em><\/strong><strong><em>Here&#8217;s how Polygon is challenging the limitations of Ethereum, as told by co-founder Sandeep Nailwal<\/em><\/strong><\/p>\n<p>Polygon&#8217;s co-founder Jaynti Kanani emphasized the network&#8217;s ability to promptly resolve the critical bug, noting in the blog post that: <\/p>\n<blockquote><p>\u201cWhat\u2019s important is that this was a test of our network\u2019s resilience as well as our ability to act decisively under pressure. Considering how much was at stake, I believe our team has made the best decisions possible given the circumstances.\u201d<\/p><\/blockquote>\n<p>According to data from Coingecko, MATIC is priced at $2.45 and is up 35.1% over the past 30 days despite the current downturn across major crypto assets this month. <\/p>\n<p><template data-name=\"subscription_form\" data-type=\"markets_outlook\"><\/template><\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong>\n<\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/news\/\" data-internallinksmanager029f6b8e52c=\"2\" title=\"News\" target=\"_blank\" rel=\"noopener\">News<\/a> articles, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/general\/\" target=\"_blank\" rel=\"noopener\">General category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/cointelegraph.com\/news\/polygon-upgrade-quietly-fixes-bug-that-put-24b-of-matic-at-risk\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;# Polygon upgrade quietly fixes bug that put $24B of MATIC at risk &#8221; Ethereum-based layer two scaling network Polygon has quietly fixed a vulnerability that put almost $24 billion worth of its native token MATIC at risk. According to a Dec. 29 blog post from Polygon, the \u201ccritical\u201d vulnerability in the network\u2019s Proof-of-Stake (PoS)&#8230;<\/p>\n","protected":false},"author":1,"featured_media":387412,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/images.cointelegraph.com\/images\/1200_aHR0cHM6Ly9zMy5jb2ludGVsZWdyYXBoLmNvbS91cGxvYWRzLzIwMjEtMTIvZTQzN2QxNjctMjE0Mi00YTAzLTgwYjAtNGVmZmE3ZDk5N2ZiLmpwZw==.jpg","fifu_image_alt":"","footnotes":""},"categories":[1],"tags":[74894,74868,74891,74882,95119,113408,103657,70944],"class_list":["post-387411","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-general","tag-blockchain","tag-defi","tag-ethereum","tag-hacks","tag-layer2","tag-polygon","tag-upgrade","tag-hackers"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/387411","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=387411"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/387411\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/387412"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=387411"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=387411"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=387411"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}