Author

Topic: [ANN] Bancor | Protocol for Smart-tokens, solving the liquidity problem - page 137. (Read 375814 times)

sr. member
Activity: 1372
Merit: 259
How they going to back funds for their users? Or they are not going? If they will not back funds, they can lost reputation.  Huh
jr. member
Activity: 364
Merit: 2

How do you know that the Team takes security seriously? This flaw was pointed out by Emin Gur Sirer before Bancor launch, and the Team never bothered to change the design. Why was that?

is this the reference to whhich you make allusion?

hackingdistributed.com/2017/06/19/bancor-is-flawed/

That does seem to be the reference. Let me include Bancor's response so that we have a wider perspective:

https://blog.bancor.network/this-analysis-of-bancor-is-flawed-18ab8a000d43
hero member
Activity: 1923
Merit: 538

How do you know that the Team takes security seriously? This flaw was pointed out by Emin Gur Sirer before Bancor launch, and the Team never bothered to change the design. Why was that?

is this the reference to which you make allusion?

hackingdistributed.com/2017/06/19/bancor-is-flawed/
legendary
Activity: 1386
Merit: 1045
I have another problem. When I issue a number of property tokens for a new project and would like to join them to the main aggregated token when actual construction is completed it looks like M&A process for two companies. Therefore I need to decrease CCR to provide the same price.

Not sure I understood your concern, anything you'd like to see clarified on Bancor's pricing algorithm?

That is a naive position to take, unless the team actually delivers on the decentralized part. How many times do they need to be reminded that third-parties are security loopholes? Does the team still think having a 'master key' is the right approach? Where is the public statement admitting they were wrong, apologizing, and updating their contracts so that such incidents cannot happen in the future?

This is not about supporting the project or not. This is about doing the right thing. Clearly the Bancor team isn't doing that, unless I missed an announcement somewhere. This hack would not be possible if the team took Security 101 precautions in their smart contracts and not have the ability for a single address to change literally everything.

What's the post mortem for how the keys were compromised?

We can assure you that the Team does take security seriously and that they're actively looking regarding what has happened. Soon enough, once there's more information, you'll hear further.
How do you know that the Team takes security seriously? This flaw was pointed out by Emin Gur Sirer before Bancor launch, and the Team never bothered to change the design. Why was that?
copper member
Activity: 238
Merit: 0
We’re thrilled to announce our biggest product release to date, Bancor’s native #wallet! Users no longer need to rely on exchanges to buy and sell #tokens!
https://twitter.com/Bancor/status/981240645384916993
member
Activity: 390
Merit: 11
after the events that happened with the bankor, my world collapsed. And it happened with a project that was so serious about security and was constantly looking for vulnerabilities in its platform. How now to be in something sure?

Hi there, the team will continue to work on improving the system, and security.

Keep in mind, all user wallets are safe. You can still access your tokens if you need help let us know.
sr. member
Activity: 644
Merit: 252
after the events that happened with the bankor, my world collapsed. And it happened with a project that was so serious about security and was constantly looking for vulnerabilities in its platform. How now to be in something sure?
newbie
Activity: 140
Merit: 0
Be sure to check out what the team is up to here! https://blog.bancor.network/
member
Activity: 1330
Merit: 10
I have another problem. When I issue a number of property tokens for a new project and would like to join them to the main aggregated token when actual construction is completed it looks like M&A process for two companies. Therefore I need to decrease CCR to provide the same price.

Not sure I understood your concern, anything you'd like to see clarified on Bancor's pricing algorithm?

That is a naive position to take, unless the team actually delivers on the decentralized part. How many times do they need to be reminded that third-parties are security loopholes? Does the team still think having a 'master key' is the right approach? Where is the public statement admitting they were wrong, apologizing, and updating their contracts so that such incidents cannot happen in the future?

This is not about supporting the project or not. This is about doing the right thing. Clearly the Bancor team isn't doing that, unless I missed an announcement somewhere. This hack would not be possible if the team took Security 101 precautions in their smart contracts and not have the ability for a single address to change literally everything.

What's the post mortem for how the keys were compromised?

We can assure you that the Team does take security seriously and that they're actively looking regarding what has happened. Soon enough, once there's more information, you'll hear further.
member
Activity: 181
Merit: 10
It is noteworthy that the project team was able to freeze the output of 3.2 million BNT ($ 10 million), since the platform protocol provides a quick response to possible threats in order to minimize damage to the community. However, the output of ETH and NPXS still took place.
legendary
Activity: 1386
Merit: 1045
This is perhaps the hottest topic and the most discussed in the community. I think any failure should be considered as an opportunity to improve the project.

In addition, many have the opportunity to buy coins while the price falls.
That is a naive position to take, unless the team actually delivers on the decentralized part. How many times do they need to be reminded that third-parties are security loopholes? Does the team still think having a 'master key' is the right approach? Where is the public statement admitting they were wrong, apologizing, and updating their contracts so that such incidents cannot happen in the future?

This is not about supporting the project or not. This is about doing the right thing. Clearly the Bancor team isn't doing that, unless I missed an announcement somewhere. This hack would not be possible if the team took Security 101 precautions in their smart contracts and not have the ability for a single address to change literally everything.

What's the post mortem for how the keys were compromised?
member
Activity: 252
Merit: 11
 I have another problem. When I issue a number of property tokens for a new project and would like to join them to the main aggregated token when actual construction is completed it looks like M&A process for two companies. Therefore I need to decrease CCR to provide the same price.
Ano
sr. member
Activity: 1148
Merit: 253
This is perhaps the hottest topic and the most discussed in the community. I think any failure should be considered as an opportunity to improve the project.

In addition, many have the opportunity to buy coins while the price falls.

Exactly the team have to take it more serious if there was an hole into security system of this network. I also believe they will improve this platform and in future this will be more secure and now there is opportunity for all strong believers to buy at cheap price.
jr. member
Activity: 266
Merit: 1
This is perhaps the hottest topic and the most discussed in the community. I think any failure should be considered as an opportunity to improve the project.

In addition, many have the opportunity to buy coins while the price falls.

Appreciate your supportive stance, BtcMan Wink
jr. member
Activity: 266
Merit: 1
No user wallets have been compromised in the attack.

Here's the latest update: https://twitter.com/Bancor/status/1016420621666963457
sr. member
Activity: 1022
Merit: 340
This is perhaps the hottest topic and the most discussed in the community. I think any failure should be considered as an opportunity to improve the project.

In addition, many have the opportunity to buy coins while the price falls.
jr. member
Activity: 242
Merit: 2
These people should be brought in front of justice and exchanges can do it very well by collaborating with one another. That is good part of hearing loss in BNT has been recovered by freezing the tokens. Bancor team has taken bold decision by putting the actual situation in front of people instead of hiding the incident and this is great thing.

Thank you for highlighting. This is a message worth sharing with anyone who may be questioning Bancor's capability and professionalism in the wake of the security breach.
jr. member
Activity: 364
Merit: 2
Bancor has been hacked. 24,984 ETH (~$12.5M), 229,356,645 NPXS (~$1M) and 3,200,000 BNT (~$10M) have been stolen. Bancor was able to freeze the stolen BNT https://twitter.com/Bancor/status/1016420621666963457
This has been posted already(See above), No point in posting again and again. Damage has been done, Hacked amount probably won't be recovered. So, Will Bancor cover this loss?

We have no news on this at the moment. As you can imagine, Bancor has devoted extra resources to look into what happened. We should have an update for the community before too long.
legendary
Activity: 1288
Merit: 1012
Bancor has been hacked. 24,984 ETH (~$12.5M), 229,356,645 NPXS (~$1M) and 3,200,000 BNT (~$10M) have been stolen. Bancor was able to freeze the stolen BNT https://twitter.com/Bancor/status/1016420621666963457
This has been posted already(See above), No point in posting again and again. Damage has been done, Hacked amount probably won't be recovered. So, Will Bancor cover this loss?
hero member
Activity: 968
Merit: 515
Bancor has been hacked. 24,984 ETH (~$12.5M), 229,356,645 NPXS (~$1M) and 3,200,000 BNT (~$10M) have been stolen. Bancor was able to freeze the stolen BNT https://twitter.com/Bancor/status/1016420621666963457
Jump to: