Tag: Mihailo Bjelic

Polygon ’s Side Of The Story: Hard-Fork Resolved A “Critical Vulnerability”

by NEWSBTC

The Polygon team offered an explanation and here it is. A few weeks ago, the Ethereum Layer 2 network hard-forked their blockchain, seemingly without explanation. As usual, NewsBTC got to the bottom of the case and presented all of the available information. The only piece missing was a promised official report with a detailed explanation from Polygon’s experts. Is this it? Apparently so. 

Related Reading | Community Voted, Why Uniswap Will Be Deployed On Polygon

Before we get into it, let’s remember Polygon’s co-founder Mihailo Bjelic’s explanation as reported by us: 

5 BTC + 300 Free Spins for new players & 15 BTC + 35.000 Free Spins every month, only at mBitcasino. Play Now!

“We’re making an effort to improve security practices across all Polygon projects,” Bjelic tweeted. “As a part of this effort, we are working with multiple security researcher groups, whitehat hackers etc. One of these partners discovered a vulnerability in one of the recently verified contracts. We immediately introduced a fix and coordinated the upgrade with validators/full node operators. No funds were lost. The network is stable.” 

It’s important to remember that the crypto ecosystem was concerned that the way that they managed to do all this seemed centralized. However, the co-founder assured everyone that “The network is run by validators and full node operators, and we have no control over any of these groups. We just did our best to communicate and explain the importance of this upgrade, but ultimately it was up to them to decide whether they will do it or not.”

However, this was Polygon node operator Mikko Ohtamaa’s further complaint:

“Next time it happens can you at least announce a critical update to all Polygon node operators. Now this looks super unprofessional and confusing for the community. It was not mentioned or pinned down in any major channels or publications.”

What Did The Polygon Experts Say?

Considering the infamous Poly Network exploit was merely in August this year, it’s good to hear Polygon is working hard in securing their whole operation. They’ve ”been investing significant effort and resources into creating an ecosystem of security expert partners, with the goal of improving the security and robustness of all Polygon solutions and products.” With that in mind, this is the company’s version of what happened:

Get 110 USDT Futures Bonus for FREE!

“Recently, a group of whitehat hackers on the bug bounty platform Immunefi disclosed a vulnerability in the Polygon PoS genesis contract. The Polygon core team engaged with the group and Immunefi’s expert team and immediately introduced a fix. The validator and full node communities were notified, and they rallied behind the core devs to upgrade the network. The upgrade was executed within 24 hours, at block #22156660, on Dec. 5.”

So far, so good. This rhymes with Bjelic’s explanation and gives the community more details. However, we know that they barely notified the validators and node operators. They don’t even have to lie about it, because they do have a great explanation as to why they ran the whole operation in stealth mode.

“Considering the nature of this upgrade, it had to be executed without disclosing the actual vulnerability and without attracting too much attention. We are still finalizing our vulnerability disclosure policy and procedures, and for now we are trying to follow the “silent patches” policy introduced and used by the Geth team.”

According to Ohtamaa, “there are multiple open source projects out there” that have done similar operations in a more effective manner. And that might be true, but it doesn’t take from the fact that Polygon’s actions were justified.  

MATICUSD price chart - TradingView

MATIC price chart on Binance | Source: MATIC/USD on TradingView.com

The Aftermath

In the end, the critical update worked out fine enough:

“The vulnerability was fixed and damage was mitigated, with there being no material harm to the protocol and its end-users. All Polygon contracts and node implementations remain fully open source.”

Related Reading | Polygon Opens Vault On MakerDAO, Commits $50 Million Worth Of Matic Tokens

Remember, one of the early criticism was that they forked the Polygon blockchain “to a completely closed-source genesis.” Here, the official source assures that “contracts and node implementations remain fully open source.” Is there something else they want to tell us?

“We are still working on closing the final proceedings with Immunefi and the whitehat hacker group, primarily in terms of their rewards and multiple rounds of reviews of the fixed vulnerability. We will post a detailed postmortem once this process is finished, likely by the end of next week.”

The team will publish yet another post with even more details for the technically oriented people. That’s above our pay grade. Stay tuned to Polygon’s blog if you’re interested.  

Featured Image by Diana Polekhina on Unsplash - Charts by TradingView

Source

Tagged : / / / / / / / / / / / / /

Polygon ’s Blockchain Hard-Forked Without Warning To Closed-Source Genesis. Why?

by NEWSBTC

What’s going on at Polygon? There seems to be a disturbance in the force over there. Is the Ethereum Layer 2 project alright? Are they doing everything above board or is there something sinister going on? Are they even decentralized if they can hard-fork just like that? Or did they follow the proper procedures and their critics are just uninformed? Can we even answer all of those questions? Probably not. But we can present all the information available and let you all get to your own conclusions.

https://twitter.com/NathanWorsley_/status/1471097609486016512

Let’s start with DeFi Builder Nathan Worsley’s accusation. Or is he just requesting information? Worsley recently tweeted, “Are we all supposed to just shut up and forget about the fact that over a week ago Polygon hard-forked their blockchain in the middle of the night with no warning to a completely closed-source genesis and still haven’t verified the code or explained what is going on?” 

5 BTC + 300 Free Spins for new players & 15 BTC + 35.000 Free Spins every month, only at mBitcasino. Play Now!

Related Reading | Polygon: Ethereum’s Friend Is Looking To Make Big Strides

The “middle of the night” part is arguable since everyone is in different timezones and the Polygon blockchain is everywhere. However, he cleared up why the issue is important, “Until the code is verified there are no security guarantees about the billions of dollars in assets the chain currently secures.” And tweeted proof of everything else, “Here’s the commit that was hard-forked into production.”

https://twitter.com/NathanWorsley_/status/1471099938222260234

Get 110 USDT Futures Bonus for FREE!

To add credibility to his claim, DeFiance Capital’s Zhu Su joined the chorus asking for answers. “Was this to patch a critical bug? Why and how did this happen?”

https://twitter.com/zhusu/status/1471111517835644932

Polygon Responds And Shows Receipts

The criticism got a response from Polygon’s co-founder Mihailo Bjelic. “We’re making an effort to improve security practices across all Polygon projects,” Bjelic tweeted. “As a part of this effort, we are working with multiple security researcher groups, whitehat hackers etc. One of these partners discovered a vulnerability in one of the recently verified contracts. We immediately introduced a fix and coordinated the upgrade with validators/full node operators. No funds were lost. The network is stable.”

https://twitter.com/MihailoBjelic/status/1471114988068786176

Ok, that sounds reasonable. Bjelic also promised, “A detailed blog post coming, we are finalizing additional security analyses.” A question lingers in the air, though. And crypto enthusiast J. Vicente Correa asks it in the most direct way possible, “U can fork the chain by yourself and take all my funds as u wish?”

https://twitter.com/JVicenteCorrea/status/1471120971574689794

And Polygon’s Mihailo Bjelic answers in the most political way possible. “Absolutely not. The network is run by validators and full node operators, and we have no control over any of these groups. We just did our best to communicate and explain the importance of this upgrade, but ultimately it was up to them to decide whether they will do it or not.”

https://twitter.com/MihailoBjelic/status/1471125217640595456

Fair enough. However…

MATICUSD price chart - TradingView

MATIC price chart on Poloniex | Source: MATIC/USD on TradingView.com

A Node Operator Has Some Criticism Of His Own

In the same thread, Polygon node operator Mikko Ohtamaa blasted the way the company handled the whole thing and also showed receipts. “Next time it happens can you at least announce a critical update to all Polygon node operators. Now this looks super unprofessional and confusing for the community. It was not mentioned or pinned down in any major channels or publications.”

https://twitter.com/moo9000/status/1471163389242138630

He got a response from Polygon’s other co-creator, Sandeep Nailwal. “This was a security update, and hence pre-public-announcement could’ve escalated things.”

https://twitter.com/sandeepnailwal/status/1471191726421422089

Ok, that makes sense. However, Ohtamaa had more complaints. “Some bug fixes” for a critical patch is not good. If there is a critical fix you co-ordinate with validators.” Plus, he reinforced Nathan Worsley’s original complaint. “It’s really obvious it is a critical security bug if you do unannounced no notice hard fork in the middle of a weekend.”

https://twitter.com/moo9000/status/1471207622212730885

According to Ohtamaa, “there are multiple open source projects out there” that have done similar operations in a more effective manner. Someone asked what could Polygon have done better. He answered with a series of simple steps. 

  1. Prepare the patch privately.

  2. A few days before, announce a critical security fix is coming. All node operators need to be prepared.

  3. Distribute the patch at the preset time.

  4. Not downplay the criticality of the patch and make idiot-looking release notes.

Related Reading | How Polygon Sealed A $400M Deal To Get Ahead In The Ethereum ZK Rollup Race

So, is there something rotten at Polygon? We will have to wait for the “detailed blog post” Bjelic promised to know for sure.

Featured Image by Mae Mu on Unsplash - Charts by TradingView

Source

Tagged : / / / / / / / / / / / / / /

$2M+ In Bids Already Placed For The First Dolce & Gabbana NFT Collection

by NEWSBTC

The auction for the digital items of Dolce & Gabbana ’s Collezione Genesi ends tomorrow. From a total of nine pieces, five have a physical and a digital version, which reportedly are wearables that can be used in the metaverse. This is the first high-fashion meets NFTs moment, but it certainly won’t be the last. Besides the competitors that are surely going to pop out soon, Dolce & Gabbana themselves are planning a whole lot more in the space.

Related Reading | NFT Project To Donate 100% Of Income To Help Afghan Women Access Education

But, let’s not get ahead of ourselves. The official auction site describes the collection as:

5 BTC + 300 Free Spins for new players & 15 BTC + 35.000 Free Spins every month, only at mBitcasino. Play Now!

“In a historic moment for the NFT ecosystem, Collezione Genesi is the first luxury NFT collection that involves both digital and physical works, truly bridging the physical and the metaphysical.”

The legendary fashion brand, Dolce & Gabbana, is working alongside UNXD, who describe themselves as “a curated marketplace for the best of digital culture.” They inform us that “All pieces were personally designed by Domenico Dolce and Stefano Gabbana exclusively for UNXD.” Here’s a phenomenal video showing the nine available items, but, make sure to notice that since it was published the bids have doubled up. And the number will probably increase tomorrow.

Also, notice that the tweet comes from Polygon’s co-founder Mihailo Bjelic. The Dolce & Gabbana ’s NFTs live on the Polygon network.

Get 110 USDT Futures Bonus for FREE!

MATICUSD price chart -TradingView

MATICUSD price chart -TradingView


MATIC price chart on Bittrex | Source: MATIC/USD on TradingView.com

Dolce & Gabbana Hits First And Hits Hard

Even to the casual observer, it’s obvious that Dolce & Gabbana ’s Collezione Genesi is a well-thought-out project. Their advisors knew what they were doing.  As we said, the NFTs come with a digital wearable piece. They also include a handmade sketch of the piece, and, more importantly, access to a community.

As NewsBTC established when analyzing Gary Vee’s Christie’s auction, community and access might be as important as the art when it comes to NFTs. The Dolce & Gabbana team obviously understands that, so they’re offering two crucial items with their genesis collection. 1.- A 3-day pass to Dolce & Gabbana ‘s “Alta Moda couture,“ the brand’s own biggest event for next year. The pass includes access to all the shows and parties. Plus, a private atelier tour. 2.- Membership to the DGFamily NFT community.

For a better explanation of that last item, let’s quote UNXD:

“Dolce & Gabbana will next roll out the #DGFamily NFT community. 4 exclusive levels, including an ultra-exclusive gold level whose inaugural members will be the winners of this Genesis auction. A similar approach to digital + physical + experiential access.”

So, this auction is the first step in a journey of a thousand miles, so to speak. Dolce & Gabbana is all in on the NFT space.

High Fashion And NFTs Belong Together

When our sister site Bitcoinist announced Dolce & Gabbana ‘s NFT collection, they made a great point:

“What’s more, high fashion and acquiring expensive items is not about necessity. Rather, it caters to being part of the luxury culture and communicating status. In many ways, NFTs also fit this bill, in that, they too have become indicative of status.”

However, for the fusion to succeed, there needs to be a landmark case. A moment that makes everyone involved see the light. Is this Dolce & Gabbana collection it? Well, it mixes the crypto universe with the real world and it’s backed by a legendary brand, but, is that enough? 

According to UNXD, the collection took the creators “an insane 16,000 hours of collective time.” It consists of “9 one-of-a-kind pieces that will never be made again.” So, you know?, it’s rare. Also, “Many of the pieces used creation techniques that are only known by a handful of people alive today. This is museum-grade work.” To top it all off, they promise, “These pieces look and “feel” real and will change how people think of digital assets.” 

Related Reading | How Polygon Will Seek To Strengthen DeFi With $2 Million Bug Bounty

That sounds incredible, but, it also opens a question. In what metaverse will they be wearable, exactly? Which one of your digital avatars will you be able to crown with “The Impossible Tiara” or “The Doge Crown”?

Featured Image by NeONBRAND on Unsplash - Charts by TradingView

Source

Tagged : / / / / / / / / / / / / / / / / /
Bitcoin (BTC) $ 26,582.12 0.03%
Ethereum (ETH) $ 1,591.24 0.05%
Litecoin (LTC) $ 64.73 0.29%
Bitcoin Cash (BCH) $ 207.47 0.43%