The vulnerability of the Blockchain Protocol Neo could allow an attacker to steal user tokens

The Chinese technology corporation Tencent informed the developers of the Blockchain Protocol NEO and the node operators in their network about the presence of a vulnerability that could theoretically allow an attacker to remotely steal tokens or, as the researchers themselves call, to engage in “remote piracy”.About this he writes  Blockmanity  with reference to the publication posted by Tencent division in the social network Weibo.

According to a statement by Tencent Security Lab, when a user launches a node on a network with a standard configuration, he is at risk. The company recommends all NEO node operators and GAS holders to pay attention to the security of their wallets and to update customers in a timely manner.

Tencent proposes the following actions to protect itself from this vulnerability:

1. Upgrade to the latest version of the NEO-CLI client;
2. Try not to use remote procedure call (RPC) and manually change “BindAddress” to “127.0.0.1”;
3. If RPC is to be activated due to the need, try to change the port number of the RPC using the https port of JSON-PRC or install a firewall.

The post The vulnerability of the blockchain Protocol Neo appeared first on Pypur.com.