You are currently viewing Cosmos Ecosystem Faces Critical Security Vulnerability – Over 20 Chains Affected
  • Cosmos Ecosystem just dogged a major security flaw that could impact network functionalities.
  • Cosmos ecosystem tokens including TIA, INJ, and LUNC maintained a bullish outlook despite the security scare.

The Cosmos ecosystem, home to various decentralized protocols, recently encountered a major security challenge that placed over 20 chains at risk of a potential network-wide outage. 

The Vulnerability and Affected Chains on Cosmos

CertiK, a leading blockchain security firm, identified the critical security vulnerability within the CosmWasm smart contract platform. The flaw allowed untrusted Wasm submissions on chains, potentially leading to the disruption of transaction confirmations and, in the worst-case scenario, a network-wide outage. 

Some of the prominent Cosmos-based chains impacted by this vulnerability include Injective, Celestia, Cronos, THORChain, Osmosis, Kava, Terra Luna Classic, and others. Chains that permitted permissionless uploads and permissioned instantiations were found to be partially affected.

Upon discovering the vulnerability, CertiK promptly shared the information with Confio, the team behind CosmWasm, to develop an effective patch. The CosmWasm team worked collaboratively with CertiK to release the patch on January 10. 

Simultaneously, they notified the affected app chains to implement preventive measures, ensuring the issue was addressed without causing disruptions to users. Backports to CosmWasm versions 1.2, 1.3, 1.4, and 1.5 were also in progress to provide comprehensive coverage and resolve the critical issue.

In a joint statement, the CosmWasm team expressed gratitude to CertiK, stating, “We express our appreciation to the CertiK team for discovering and responsibly reporting this bug. The detailed report made it possible to quickly understand the issue, reproduce it, and confirm its validity. It was followed by collaborative efforts in developing and implementing the best possible patch for CosmWasm.”

Impact on Cosmos Ecosystem Tokens

While the security vulnerability had the potential to cause havoc on the affected chains, the timely release of the patch and proactive measures prevented severe network outages. Notably, the impact on Cosmos ecosystem tokens’ prices was limited. Some tokens did experience fluctuations, but the overall market remained relatively stable.

Celestia (TIA) experienced a notable rally, with its price surging over 50% in a week. This surge can be attributed to several developments, including the milestone of staked unique wallets surpassing 300,000. TIA is currently trading at $18.80, boasting a market capitalization of $2.9 billion.

Injective (INJ) also showed favorable market dynamics, rising 4% in the last 24 hours to $40.86. INJ’s trading volume increased to $265 million, showing heightened investor interest. Furthermore, LUNC enjoyed a 5% price increase, trading at $0.0001271, while OSMO experienced a 0.03% fall, with a current market price of $1.78 during the last 24 hours. Cosmos (ATOM) is up 3.46% to $10.34.

The recent security vulnerability within the Cosmos ecosystem underscores the importance of robust security measures in the blockchain space. The swift and collaborative response from CertiK and the CosmWasm team prevented potential network-wide outages, safeguarding the integrity of over 20 affected chains. The incident also highlights the resilience of Cosmos ecosystem tokens, with some experiencing positive market performance despite the security challenges.

Leave a Reply