CertiK Blog and News
Join Our Community Today!
Vulnerability in Electron-based Application: Unintentionally Giving Malicious Code Room to Run
CertiK | Jul 1
One of our security engineers discovered a remote code execution vulnerability in the Symbol desktop wallet and reported the vulnerability through their bug bounty program. Though the HackerOne report is not yet public, we give many thanks to the Symbol team for allowing us to disclose and share our findings.
Little Pains, Great Gains: How the Balancer DeFi Contract Was Drained
CertiK | Jul 1
On June 28th at 6:03PM UTC (2:03PM EDT), the CertiK Skynet found that block 10355807 on the Balancer DeFi contract was abnormal. Our team of security researchers acted quickly to investigate; however, the attack had already happened.
NoOps: Reinventing Your Staking UX
CertiK | Jun 26
By developing blockchain and cybersecurity technologies in parallel and complementary to one another, CertiK envisions NoOps as not just a singular product in its portfolio, but a gateway to innovation, discoveries, and deep knowledge in these two sectors.
Introducing NoOps: The New Way to Run Your Nodes
CertiK | Jun 18
The product serves as a one-stop solution that serves the needs of different groups of end users actively participating in the staking business.
CORS-anywhere: The Dangers of Misconfigured Third-Party Software
CertiK | Jun 10
In a recent web application penetration test, we discovered a critical vulnerability that we didn’t expect to find.