The developers of ZCASH reported on finding and correcting a serious error in the code of cryptocurrencies, with the help of which the attackers could potentially be infinitely creating new coins.
Although the startup spoke about the presence of vulnerability on Tuesday, it was revealed back in March 2018, but did not disclose this information so as not to attract the excessive attention of hackers. Since the error was in the name of ZK-Snarks encryption protocol, ensuring a high degree of user privacy, then the action of the fraudster could not be traced. The adjustments were made along with the update of the Sapling network activated in October.
Another reason for concealment was the use of this encryption protocol by other projects, such as Horizen and Komodo. Therefore, after finding its decision, the developers told colleagues about the threat and method of its liquidation. After they were convinced that the problem was no longer relevant, officially reported.
The startup team says that the users have nothing to worry about, since the loophole was very difficult and only very few technical specialists who have advanced knowledge in cryptographs would be able to understand it. Therefore, developers do not think that cryptocurrency at risk.
In order to avoid such situations, in Ethereum Core decided