Tech

Uniswap Wallet Faces Security Warning After Flaw Uncovered

1 day ago
Bitcoin Ethereum News
  • A critical flaw in Uniswap’s Web3 wallet enables attackers to extract the mnemonic phrase within three minutes on unlocked devices.
  • Cryptocurrency losses from exploits surged to $2.3 billion in 2024, with December marking a 71% drop, signaling improved security.

A critical vulnerability in Uniswap’s Web3 wallet has come to light, raising significant concerns in the decentralized finance (DeFi) sector. On January 13, ScaleBit, a subsidiary of BitsLab, raised alarms, reporting that the flaw could compromise “all stored assets” in the wallet. That announcement set off a wave of concern among users and highlighted the ongoing battle against cybersecurity threats in the crypto industry.

The issue centers on the wallet’s mnemonic phrase, a master key made up of 12 to 24 words that grant access to all wallet assets. According to ScaleBit, attackers with physical access to a device can extract the wallet’s seed phrase in under three minutes, bypassing authentication measures. 

“Anyone with access to an unlocked device can obtain the wallet’s mnemonic phrase in under three minutes,” the firm warned.

Despite Uniswap’s upgraded version, ScaleBit has advised users to avoid lending their devices to others until Uniswap addresses the issue with a patch. The incident underscores the importance of mnemonic phrases in safeguarding digital assets and raises broader questions about the security of cryptocurrency investments.

Significant Rise in Crypto Exploits — $2.3 Billion Gone

ScaleBit warning over Uniswap comes amid increasing scrutiny over cryptocurrency security. According to Cyvers, a cybersecurity firm, 2024 saw a staggering 40% increase in losses due to exploits, totaling $2.3 billion. A significant portion of that damage stemmed from access control breaches on centralized exchanges and custodial platforms.

Deddy Lavid, Cyvers’ CEO, stressed the need for stronger safeguards, saying, “These breaches highlight the urgent need for robust security measures.” However, there is a silver lining: December 2024 saw a sharp decline in losses from crypto hacks, scams, and exploits, signaling progress in securing digital assets.

CertiK, a blockchain security firm, reported that losses in December dropped to $28.6 million, a steep fall from $115.8 million in October. PeckShield, another security firm, observed a similar trend, with December losses at $24.7 million—a 71% decrease compared to November. Although encouraging, these improvements do not negate the risks posed by vulnerabilities like the one found in Uniswap’s wallet.

All Eyes on the Uniswap’s Patch

As one of the largest decentralized exchanges, Uniswap faces significant pressure to respond decisively to the reported flaw. The crypto community is waiting for a timely patch and transparent communication from the platform. Mishandling the situation could erode trust, while a swift resolution could reinforce its reputation as a leader in the DeFi space.

Meanwhile, other developments in the crypto sector are adding to the complex landscape. Upbit, a South Korean exchange, warned about the Internet of Services Token (IOST) following an advisory from the Digital Asset eXchange Alliance (DAXA). The token’s transition to a layer-2 blockchain is expected to bring major changes in its tokenomics and network structure, signaling potential shifts for investors.

IOST, known for its focus on decentralized applications and scalability, plans to enhance transaction speeds and reduce fees with the upgrade. That move underscores the constant evolution of blockchain projects, even as the sector grapples with persistent security challenges.

Source: https://www.crypto-news-flash.com/uniswap-web3-wallet-faces-security-warning-after-critical-flaw-uncovered/?utm_source=rss&utm_medium=rss&utm_campaign=uniswap-web3-wallet-faces-security-warning-after-critical-flaw-uncovered