July 11, 2026

Capitalizations Index – B ∞/21M

No, Tether Wasn’t Hit by a Double Spend Attack

No, tether wasn’t hit by a double spend attack

No, Tether Wasn’t Hit by a Double Spend Attack


Bank of montreal hack
Advertisement

Contrary to reports circulating on social media, controversial cryptocurrency Tether has not been hit by a double spend attack.

The Full Story Behind That Suspicious Tether Transaction

Earlier this week, blockchain security research team SlowMist identified suspicious activity surrounding a particular tether transaction. The firm published a blurred photograph of the raw transaction along with the suggestion that it had been involved in a successful double spend against a cryptocurrency exchange. It is not currently clear whether the exploit was carried out by a black hat hacker or by SlowMist as a proof-of-concept.

As the name suggests, a double spend attack occurs when an attacker successfully spends a single coin twice. Generally, this is accomplished by tricking a recipient into believing that a payment has confirmed and then reversing that transaction.

Responding to the allegations, Omni developers explained that the flaw lay not in the Omni protocol — upon which Tether runs — but in the manner in which the still-unnamed exchanged handled incoming token payments. Apparently, the platform’s deposit system did not properly verify whether a transaction’s validity flag was marked as “true” before crediting the deposit to the user’s account, allowing the sender to deposit the same coins to the platform twice.

Even so, this does not mean that new tethers were printed out of thin air, just that the attacker could have potentially stolen funds from the exchange’s internet-connected hot wallet.

“The reference client of the Omni Layer, Omni Core, doesn’t credit any tokens from invalid transactions,” the developers wrote, adding that “Based on our investigation this was not a recurring event and no large amounts of funds were lost.”

What If It Had Been a True Double Spend?

SlowMist later clarified that, upon deeper investigation, Omni’s version of events was indeed the case. However, had the transaction actually constituted a double spend, it would likely have had severe ramifications for far more than just tether holders.

Tether runs on the Omni protocol, which itself is a second-layer application on top of the bitcoin network (Tether has also been released on Ethereum, but the overwhelming majority of USDT tokens remain on Omni). Consequently, launching a double spend attack against an Omni-based asset such as tether would require the attacker to gain control of 51 percent of the bitcoin hashrate, placing the entire BTC network at risk.

Moreover, tether, which is pegged to the U.S. Dollar at a 1:1 ratio and allegedly backed by physical dollars stored in Tether-owned bank accounts, serves as a proxy for USD on many cryptocurrency exchanges. The token currently has a $2.7 billion market cap, making it the ninth-largest cryptocurrency.

As CCN has reported, such double spend attacks have become more common in recent months, at least among small-cap altcoins. Verge, bitcoin Gold, Monacoin, ZenCash, and Litecoin Cash have all been hit by variations of this type of attack in 2018 alone.

It is still unknown which cryptocurrency exchange was vulnerable to the exploit, though several — including OKEx — confirmed that their systems are immune.

Featured Image from Shutterstock

Follow us on Telegram or subscribe to our newsletter here.
Join CCN’s crypto community for $9.99 per month, click here.
Want exclusive analysis and crypto insights from Hacked.com? Click here.
Open Positions at CCN: Full Time and Part Time Journalists Wanted.

Advertisement


Published at Fri, 29 Jun 2018 18:07:06 +0000

Altcoin News

Previous Article

Blockchain Hype Overstates Reality, Says Steve Wozniak

Next Article

No, Tether Wasn’t Hit by a Double Spend Attack

You might be interested in …

日本金融局修订的日本支付服务法案将会在四月实施

日本金融局修订的日本支付服务法案将会在四月实施

日本金融局修订的日本支付服务法案将会在四月实施 3月29日据国内媒体报道获悉,上周五(3月24日)日本金融局(FSA)最终确定了新修订的《日本支付服务法案》将在4月1日正式实施。 同时,作为《日本支付服务法案》的一部分,《犯罪收益转移预防法案》也已对应修订完成。据悉,新修订的法案要求日本比特币交易所遵守更为严格的KYC流程(了解你的客户)。   《日本支付服务法案》完成修订已有一段时间,但是具体的生效日期始终未得到确认。之前市场预计该法案最早为今年6月份能够实施,但随后有业内人士透露或4月份能够落实。而上周五日本金融服务局(FSA)给出了最终答案,宣布了该法案将在4月1日执行。 这一法案的正式实施意味着比特币在日本的正式合法化。 作为《日本支付服务法案》的一部分,《犯罪收益转移预防法案》也做出了内容调整,要求比特币交易所实时比之前更加严格规范的KYC流程。比特币交易所必须认真核实开户用户的身份,保存相应交易记录,并且向监管机构报告可疑交易。  日本最大比特币交易所BitFlyer正在进行严格审查 日本最大的比特币交易所BitFlyer声称正在接受严格程度“超过普通金融机构”的用户身份验证审核。他们必须为遵守新KYC流程做出表率。 BitFlyer表示,对于日交易额超过5万日元的用户,他们将会核查用户的银行账户信息,并要求用户提交类似于国内“双手手持身份证”的照片,并附护照/驾驶证复印件。 日本排名第三、第四的比特币交易所Coincheck和Zaif交易所在该法案发布后,各自于官网上公布了新的KYC规定。 “为了遵循《犯罪收益转移预防法案》,Coincheck正在执行KYC流程。” Zaif在其官网上除详细介绍KYC流程要求外,还鼓励客户在新法律生效前赶紧开户,因为新法律生效后再开户将会增加一些步骤,难度相应提升。 Zaif在公告中介绍,4月1日后,想在Zaif比特币交易所开户的用户需要完成三个步骤: ——客户必须填写名字,住址,出生日期,职业和开户目的等信息。——客户必须上传真实的身份信息文件,用以存档。——客户完成邮件验证,确认真实身份。 对于邮件验证,Zaif比特币交易所将按照新法律的要求向每一位客户发送一份“简单注册邮件”。客户需要输入该明信片上的识别码来完成确认。 Zaif重述说,若客户对以上要求无法完成,则交易所会“限制用户的部分功能”。 Coincheck的KYC流程基本类似。 来源:金色财经作者: 比特侃儿原文链接:http://www.jinse.com/news/bitcoin/15558.html (Why?) Published at Thu, 30 Mar 2017 12:07:08 +0000 [wpr5_ebay kw=”bitcoin” num=”1″ ebcat=”” cid=”5338043562″ lang=”en-US” […]

Decentralize This! — Episode 21: Josh Cincinnati – Enigma

Decentralize This! — Episode 21: Josh Cincinnati – Enigma Transactional Privacy and How Foundations Help Decentralization Enigma’s podcast “Decentralize This!” features guests from all over the decentralization space: developers, investors, entrepreneurs, researchers, writers, artists, people in government […]