Connect with us

Hi, what are you looking for?

Business

By June 2024, Ledger will disable blind signing on Dapps

The hardware wallet manufacturer announced that individuals who fell prey to the exploit involving a malicious version of its Connect Kit library last week would be reimbursed.

Crypto hardware wallet provider Ledger will enact changes to transaction signing processes after a Dec. 14 exploit in the Ledger Connect Kit software library. A week after an exploit on its Connect Kit library led to losses of over $600k, Ledger has announced its decision to disable blind signing for all Ethereum dApps.

By signing a transaction blindly, an individual certifies its contents without having complete knowledge of them. These particulars are presented as unprocessed smart contract signing data, which renders them unintelligible to the human eye. Ledger states that by June 2024, blind signature will no longer be supported for Ethereum decentralized applications (dApps) on its hardware wallets. Victims of the breach will also be reimbursed, as promised by the hardware wallet provider. Clear Signing is being developed by Ledger in collaboration with its ecosystem and community partners, the company asserts.

Front-end attacks have happened many times before and will continue to plague our ecosystem. The only foolproof countermeasure for this type of attack is to always verify what you consent to on your device.

Ledger stated

Although the purpose of blind signing is to improve privacy and security through the provision of comprehensive information, if the user is not aware of the precise specifications of the document they are signing, it can present a substantial risk. By using blind signing, malicious actors could potentially deceive users into approving unauthorized or malevolent transactions unknowingly, thereby endangering their assets.

Conversely, clear signing enables users to examine the comprehensive particulars of a transaction in a format that is comprehensible to humans prior to conducting authentication and granting consent. This approach facilitates a level of openness and aids users in verifying that they are authorizing authentic transactions.

Our commitment is to work with the community and DApp ecosystem to allow Clear Signing so users can verify all transactions on Ledger devices before signing. This will lead to a new standard to protect users and encourage Clear Signing across DApps.

Ledger added

As previously reported by The Block, a software library on which Ledger depended was compromised last week due to a critical vulnerability that affected multiple decentralized applications. Perhaps as a result of a breach in the content delivery network of the software library, the exploiter gained access to the front-ends of the applications by injecting malicious code. This code enabled the theft of assets. After identifying the malicious code, Ledger removed it; however, third-party organizations estimated that funds worth approximately $500,000 had been compromised at the time.

author avatar
Contributor
We welcome Aspiring writers who are passionate about crypto and involved in it to join the Unbiased and Upright 4C Media Co. with a goal to spread knowledge and be a reliable source of crypto news updates.
Advertisement

You May Also Like

Cryptocurrency

The court sentenced Craig Wright, the Australian entrepreneur who falsely claimed to be the creator of Bitcoin, to a suspended one-year prison term for...

Cryptocurrency

President Joe Biden supports a prohibition on stock trading for members of Congress, citing potential conflicts of interest. This idea seeks to ensure that...

Cryptocurrency

Despite Coinbase's decision to delist Tether's USDT in Europe owing to MiCA restrictions, major exchanges including Binance, Crypto.com, and Kraken still offer the stablecoin...

Cryptocurrency

The Nigerian Economic and Financial Crimes Commission has arrested 792 individuals involved in a large-scale crypto romance scam based in Lagos. The operation, which...

polkadot
Polkadot (DOT) $ 7.45 6.75%
bitcoin
Bitcoin (BTC) $ 96,122.75 0.83%
ethereum
Ethereum (ETH) $ 3,438.33 2.89%
cardano
Cardano (ADA) $ 0.927453 4.46%
xrp
XRP (XRP) $ 2.30 4.69%
stellar
Stellar (XLM) $ 0.383472 7.45%
litecoin
Litecoin (LTC) $ 109.17 6.88%