Logo

Blog

Ethereum Smart Contracts Vulnerabilities: Reentrancy

Reentrancy is probably the most famous Ethereum vulnerability, and it surprised everyone when discovered for the first time. It was first unveiled during a multimillion dollar heist which led to a hard fork of Ethereum. Reentrancy occurs when external contract calls are allowed to make new calls to the calling contract before the initial execution is complete. This means that the contract state may change in the middle of its execution, as a result of a call to an untrusted contract or the use of a low level function with an external address. One of the major dangers of calling external contracts is that they can take over the control flow. In a reentrancy attack, a malicious contract calls back into the calling contract before the first invocation of the function is finished. This may cause the different invocations of the function to interact in undesirable ways.

Leer màs...

La norma IEC 62443 para la ciberseguridad industrial


Por Marcos García, Consultor de Ciberseguridad de Dreamlab Technologies

La ciberseguridad en entornos industriales es cada vez más necesaria dado que la explotación de vulnerabilidades podría resultar en la disminución o interrupción de las operaciones, equipos dañados o pérdida de control del entorno, lo que implicaría pérdidas monetarias de gran escala por la interrupción de las líneas de operación, así como un probable impacto sobre la seguridad de los empleados y los consumidores de los servicios.

Leer màs...