Internet Security

Cosmos co-founder warns of North Korean influence in Cosmos Hub’s LSM

Cosmos co-founder Jae Kwon alleges North Korean agents helped develop Cosmos Hub’s LSM code Kwon accuses Iqlusion’s Zaki Manian of hiding unresolved security risks Kwon urges an immediate audit and stricter oversight for future implementations Cosmos co-founder Jae Kwon has raised serious concerns regarding the integrity of the Cosmos Hub’s liquid staking module (LSM), alleging

Published 8 months ago in
Cosmos co-founder warns of North Korean influence in Cosmos Hub’s LSM

Cosmos co-founder warns of North Korean influence in Cosmos Hub's LSM
  • Cosmos co-founder Jae Kwon alleges North Korean agents helped develop Cosmos Hub’s LSM code
  • Kwon accuses Iqlusion’s Zaki Manian of hiding unresolved security risks
  • Kwon urges an immediate audit and stricter oversight for future implementations

Cosmos co-founder Jae Kwon has raised serious concerns regarding the integrity of the Cosmos Hub’s liquid staking module (LSM), alleging that significant portions of its development involved individuals linked to North Korea.

In a statement released on Tuesday, Kwon accused Cosmos validator hosting firm Iqlusion and its leader, Zaki Manian, of “gross negligence” in allowing the module’s integration without adequate security vetting.

Cosmos Hub’s LSM developers North Korea agents

According to Kwon, development of the LSM began in August 2021 under the direction of Iqlusion and Manian, with contributions from developers Jun Kai and Sarawut Sanit.

Kwon alleges that these developers were later identified as North Korean agents and had provided a substantial portion of the module’s code.

Despite awareness of their connections since March 2023, Kwon claimed Manian withheld this information and failed to disclose several unresolved security risks associated with the LSM.

The controversy gained traction following Manian’s social media acknowledgement that he had known about the North Korean-linked developers for months. However, instead of taking preventive actions, such as conducting an additional audit or informing the Cosmos community, Kwon stated that Manian continued to assert the module was “ready to be deployed.”

Kwon accused Manian of a “profound breach of trust” for prioritizing deployment over community safety.

Critical vulnerabilities in the LSM

Security issues had already surfaced during a 2022 audit that revealed critical vulnerabilities in the LSM. These vulnerabilities were reportedly addressed by the same North Korean-linked developers.

Kwon suggested that despite Manian’s claim of rewriting the LSM code before deployment, significant risks persisted, especially since the module was not a standalone feature, but a set of modifications built atop existing Cosmos staking modules.

This could potentially expose all staked ATOM tokens to security threats.

Kwon has called on the Cosmos governance community to initiate a comprehensive audit of the LSM immediately. Additionally, he urged the Interchain Foundation to impose stricter auditing standards and create an oversight framework to ensure the security of future Cosmos implementations.

Share this article

Read More

Be the first to write a comment.

Leave a Reply

Your email address will not be published. Required fields are marked *

Internet Security

Oregon passes bill to establish legal control standards for digital assets

Key Takeaways Oregon passed Senate Bill 167 to update commercial laws and include digital assets in the UCC. The new law allows digital assets to be used as collateral and recognizes electronic records and signatures. Share this article Oregon has enacted Senate Bill 167, updating the state’s commercial laws to incorporate digital assets into the

Published 1 day ago in
Oregon passes bill to establish legal control standards for digital assets

Key Takeaways

  • Oregon passed Senate Bill 167 to update commercial laws and include digital assets in the UCC.
  • The new law allows digital assets to be used as collateral and recognizes electronic records and signatures.

Share this article

Oregon has enacted Senate Bill 167, updating the state’s commercial laws to incorporate digital assets into the Uniform Commercial Code (UCC).

The legislation, signed by Governor Tina Kotek on May 7, introduces UCC Article 12, which creates a legal framework for digital assets including crypto assets, tokenized records, and electronic money.

The bill amends Article 9 to allow digital assets to be used as collateral in secured transactions. It also updates several UCC articles to recognize electronic records, signatures, and hybrid transactions to support digital commerce.

The new law includes transitional provisions that maintain the validity of transactions made before the act’s effective date and provides a one-year period for existing security interests to comply with the new regulations.

Before these changes, there was legal uncertainty about how digital assets fit into existing commercial laws, especially when used as collateral or transferred between parties. The UCC amendments clarify how rights in these assets can be legally controlled, perfected, and enforced.

Apart from SB 167, House Bill 2071 is another crypto-related bill introduced in Oregon.

This proposed legislation focuses on blockchain and digital asset rights. It is aimed at protecting and promoting the use of Bitcoin and other digital assets in the state by limiting regulatory barriers and clarifying the legal framework for blockchain-based activities.

Some of the highlights of the bill include a prohibition on state and local governments from restricting or impairing a person’s ability to accept digital assets as payment for lawful goods and services, as well as the right to conduct peer-to-peer transactions via blockchain or digital asset networks.

The bill is still in the early stages of the legislative process and has not yet advanced to a vote in either the House or the Senate.

Unlike most US states, Oregon lawmakers have not proposed any bill to create a state Bitcoin reserve as of now.

Share this article

?xml>
Read More

Continue Reading
Internet Security

White House rejects parts of Trump advisers’ sovereign wealth fund proposal

Key Takeaways The White House has rejected parts of a sovereign wealth fund proposal created by Trump’s advisers. The details of the sovereign wealth fund are still under debate with no final decisions announced yet. Share this article The White House has opposed certain elements of a sovereign wealth fund proposal developed by Treasury Secretary

Published 1 day ago in
White House rejects parts of Trump advisers’ sovereign wealth fund proposal

Key Takeaways

  • The White House has rejected parts of a sovereign wealth fund proposal created by Trump’s advisers.
  • The details of the sovereign wealth fund are still under debate with no final decisions announced yet.

Share this article

The White House has opposed certain elements of a sovereign wealth fund proposal developed by Treasury Secretary Scott Bessent and Commerce Secretary Howard Lutnick at President Trump’s request, according to a new report from CBS News.

The plan, reportedly delivered by early May, follows Trump’s February executive order directing the Treasury and Commerce departments to develop a framework for a US sovereign wealth fund within 90 days.

The order fueled speculation that the fund might be used to acquire Bitcoin on behalf of the US government.

However, at the time, Bessent and Lutnick said that the fund would indeed focus on warrants, equity, and other non-crypto investments. Still, David Sacks, Trump’s crypto czar, indicated that Bitcoin could be included in the fund’s portfolio.

That no longer appears to be the case after Trump signed a separate executive order establishing a strategic Bitcoin reserve and a digital asset stockpile on March 6, which suggests a standalone approach to crypto holdings.

There were also rumors that the fund might be financed through tariffs and other revenue sources despite ongoing budget deficits. But Lutnick later clarified that tariffs would not be used to support the sovereign wealth fund.

According to the CBS News report, White House spokesperson Kush Desai said the Treasury and Commerce Departments have developed plans in response to Trump’s directive, but no final decisions have been made.

The administration, Desai added, continues to view the initiative as part of its broader effort to safeguard national and economic security.

Details of the fund’s structure and purpose remain under discussion, with no formal announcement expected in the near term.

Sources say Trump has not yet decided how the fund’s proceeds would be used, though he has previously floated the idea of it taking a stake in TikTok, which faces a potential US ban unless ByteDance divests.

Regarding the US Strategic Bitcoin Reserve and the Digital Asset Stockpile, Bessent and Lutnick are also tasked with outlining operational guidelines, custody frameworks, and acquisition strategies. These plans are expected to remain separate from the sovereign wealth fund initiative and are designed to be budget-neutral.

Share this article

?xml>?xml>?xml>
Read More

Continue Reading
Internet Security

Crypto Security Breach at Lido DAO Triggers Governance Response

TLDR Lido DAO started an emergency vote to rotate a compromised Chorus One oracle The exploit drained ETH balance and likely resulted from a hot wallet private key leak The issue is restricted to one oracle and is not system-wide Cybersecurity remains a critical issue for cryptocurrency and DeFi Over $2 billion in crypto was

Published 1 day ago in
Crypto Security Breach at Lido DAO Triggers Governance Response

TLDR Lido DAO started an emergency vote to rotate a compromised Chorus One oracle The exploit drained ETH balance and likely resulted from a hot wallet private key leak The issue is restricted to one oracle and is not system-wide Cybersecurity remains a critical issue for cryptocurrency and DeFi Over $2 billion in crypto was […]
The post Crypto Security Breach at Lido DAO Triggers Governance Response appeared first on Blockonomi…
Read More

Continue Reading
Internet Security

CZ Shares Security Warning After Ledger Discord Hack Exposes User Data

Changpeng Zhao (CZ), founder and former CEO of Binance, shared a security warning after receiving a message regarding a hack of Ledger’s Discord admin account, where a scammer falsely claimed a security flaw and urged users to enter their recovery phrases on a phishing site. Zhao highlighted two critical lessons: the necessity of never sharing

Published 1 day ago in
CZ Shares Security Warning After Ledger Discord Hack Exposes User Data

Changpeng Zhao (CZ), founder and former CEO of Binance, shared a security warning after receiving a message regarding a hack of Ledger’s Discord admin account, where a scammer falsely claimed a security flaw and urged users to enter their recovery phrases on a phishing site. Zhao highlighted two critical lessons: the necessity of never sharing [……
Read More

Continue Reading