Bug bounty quadruples for Ethereum network — Up to $1M payouts ahead of Merge

The Ethereum Foundation has announced it will be increasing the network’s bug bounty payouts fourfold ahead of the blockchain’s transition to proof-of-stake.

In a Wednesday blog post, the Ethereum Foundation said between Aug. 24 and Sept. 8, all “Merge-related bounties for vulnerabilities” will be quadrupled for white hats testing the network. According to the foundation, identifying “critical bugs” – those that have a high impact or likelihood of a high impact on the blockchain – will be worth up to $1 million. The bounty program also allows submissions for low, medium and high risk bugs.

As part of the transition to proof-of-stake, the foundation said the Ethereum Network “must first be activated on the Beacon Chain with the Bellatrix upgrade,” an event expected to happen on Sept. 6, with the Merge likely following between Sept. 10 and 20. Core developers previously announced a tentative Merge date of Sept. 15 when the Total Terminal Difficulty, or TTD – the difficulty of the final mined block – will trigger the end of proof-of-work and the start of proof-of-stake.

“The incremental difficulty added per block is dependent on the network hash rate which is volatile,” said the foundation. “If more hash rate joins the network, TTD will be reached sooner. Similarly, if hash rate leaves the network, TTD will be reached later.”

Source: Ethereum Foundation

The foundation added that Ether (ETH) holders and users largely did not need to take any action prior to the Merge other than to “be on the lookout for scams.” Mining will no longer be possible following the transition, while stakers and node operators will both need to run an execution layer client, with the latter doing so with a consensus layer client.

In July 2020, the Ethereum Foundation announced it had launched public “attack networks” for Ethereum 2.0 for white hats to attempt to exploit potential issues in the clients, offering a $5,000 bounty at the time. However, in August 2021, a vulnerability affecting earlier versions of one of Ethereum’s software clients, Geth, caused more than half the network’s nodes to split. The Merge will require the latest version of Geth as an execution client.

Related: MakerDAO launches biggest ever bug bounty with $10M reward

Other projects have offered up to $1 million or more in bug bounties aimed at finding exploits resulting in the theft ofor risk of losing millions, as Sky Mavis did in April 2022 following a $600-million hack on the Ronin Network. In June, Ethereum bridging and scaling solution Aurora paid a $6-million bounty to a white hat hacker who discovered a critical bug.

All Dutch and English crypto news!

Price analysis 9/30: SPX, DXY, BTC, ETH, BNB, XRP, ADA, SOL, DOGE, DOT

The United States equities markets have been under a firm bear grip for a large part of the year. The S&P 500 and the Nasdaq...

CFTC charges Digitex founder over illegal crypto derivatives platform

The Commodity Futures Trading Commission (CFTC), has brought charges against Adam Todd, the founder of crypto derivatives platform Digitex, according to court documents filed in...

MicroStrategy takes its BTC maximalism to the next level with new engineer hire

MicroStrategy, the business intelligence and tech company that holds the world's largest Bitcoin reserve, is hiring a Bitcoin Lightning software engineer to create a Lightning...

Crypto Biz: The Voyager Digital auction is over. What now?

Voyager Digital filed for Chapter 11 bankruptcy in July after its exposure to the toxic Three Arrows Capital led to its ultimate downfall. This week,...

Beste exchanges

Koop je crypto bij Bitvavo