Mitrade Insights is dedicated to providing investors with rich, timely and most valuable financial information to help investors grasp the market situation and find timely trading opportunities.

2021

Best News & Analysis Provider

FxDailyInfo

2022

Best Forex Educational Resources Global

International Business Magazine

Insights

News

Cryptocurrencies

Circle Addresses Bug That Could Have Led to Millions in Losses if Exploited

Source Livebitcoinnews

Attackers could have minted up to 35 million USDC on the Noble Bridge if Asymmetric Research had not found the flaws.

Asymmetric Research, a blockchain cybersecurity firm, helped Circle identify a bug that could have led to massive losses if not addressed. It existed in Circle’s Cross-Chain Transfer Protocol (CCTP) deployed on the Cosmos network, which allows the firm’s USDC stablecoin to be bridged. Specifically, Asymmetric found the vulnerability in the noble-cctp module of the CCTP.

“We privately disclosed a vulnerability to Circle via their bug bounty program,” the security firm said in its report. “Notably, no malicious exploitation took place, and no user funds were lost. Circle promptly took action, once notified, to fix the bug.”

The bug could have allowed bad actors to mint “infinite” USDC tokens on the Noble Bridge, an app chain allowing cross-chain transfers between Cosmos-associated blockchains. Delving deeper, unauthorized individuals could exploit the bridge’s message sender verification process, which ideally requires the “BurnMessages” function to come from ratified “TokenMessenger” addresses. The verification process was not doing that.

“An attacker could have been able to exploit this and trigger malicious USDC mints by sending a fake BurnMessage directly through a CCTP MessageTransmitter contract, using the noble-cctp module address and noble’s chainid as the CCTP destination. However, we did not identify any evidence of exploitation,” Asymmetric explained through its findings.

Infinite Money Glitch at First Assumption

While initial observations led Asymmetric to believe that attackers could mint as many USDC tokens as they wanted, a closer look found that Noble enforced a mint limit of about 35 million USDC—still concerning. Luckily, nobody with bad intentions found the bug. No tokens got minted out of thin air, and no Noble Bridge users lost their funds. Circle took immediate measures to patch the vulnerability, fixing the verification process to check minting messages come from valid addresses.

The story could have been entirely different had Asymmetric not found the glitch, possibly adding Circle and its users on the Noble Bridge to a worrisome growing list of victims of cyberattacks this year.

The post Circle Addresses Bug That Could Have Led to Millions in Losses if Exploited appeared first on Live Bitcoin News.

Disclaimer: For information purposes only. Past performance is not indicative of future results.

Recommended Articles

Ripple (XRP) Price Sees a Surge, Solana Targets $600 in 2025 as Investors Increase Focus on New Altcoin The cryptocurrency market is showing renewed momentum as Ripple (XRP) experiences a significant price surge, and Solana (SOL) sets its sights on a bold $600 target by 2025. Meanwhile, a rising altcoin, Lightchain AI, is capturing investor attention with its innovative ecosystem and strong presale performance, making it a compelling choice for forward-looking investors. Ripple […]

Author Cryptopolitan

Jan 15, Wed

The cryptocurrency market is showing renewed momentum as Ripple (XRP) experiences a significant price surge, and Solana (SOL) sets its sights on a bold $600 target by 2025. Meanwhile, a rising altcoin, Lightchain AI, is capturing investor attention with its innovative ecosystem and strong presale performance, making it a compelling choice for forward-looking investors. Ripple […]

What Crypto Whales are Buying For May 2025 Crypto whales are making bold moves heading into May 2025, and three tokens are standing out: Ethereum (ETH), Artificial Superintelligence Alliance (FET), and Onyxcoin (XCN).

Author Beincrypto

Apr 21, Mon

Crypto whales are making bold moves heading into May 2025, and three tokens are standing out: Ethereum (ETH), Artificial Superintelligence Alliance (FET), and Onyxcoin (XCN).

Analysts Highlight 4 Reasons Why ETH Price Could Rebound Strongly in May Ethereum (ETH) has declined for five consecutive months. However, it enters May with rising optimism.

Author Beincrypto

May 07, Wed

Ethereum (ETH) has declined for five consecutive months. However, it enters May with rising optimism.

Ethereum Price Ready to Surge—$2,000 Level Could Be Within Reach Ethereum price started a fresh increase above the $1,800 zone. ETH is now rising and attempting a move above the $1,850 resistance. Ethereum started a fresh recovery wave above the $1,820 resistance.

Author NewsBTC

May 08, Thu

Ethereum price started a fresh increase above the $1,800 zone. ETH is now rising and attempting a move above the $1,850 resistance. Ethereum started a fresh recovery wave above the $1,820 resistance.

Ethereum Price Explodes Past $2,200 with 25% Surge—Momentum Builds Fast Ethereum price started a fresh surge above the $2,000 zone. ETH is now up over 25% and consolidating gains near the $2,200 zone. Ethereum started a fresh surge above the $2,000 resistance.

Author NewsBTC

May 09, Fri

Ethereum price started a fresh surge above the $2,000 zone. ETH is now up over 25% and consolidating gains near the $2,200 zone. Ethereum started a fresh surge above the $2,000 resistance.

Popular Symbols