On September 18, a Redditor posted to the r/bitcoin forum and explained how he discovered a way to “attack [the] lightning Network’s custodial services.” The Reddit account dubbed “Reckless Satoshi” wanted to figure out if a “discrepancy between real routing fees and service’s transaction fee can be exploited for a profit.” The researcher disclosed that he wanted to see how large the damage could be and said “it is bad.”
6 Lightning Network Custodial Services Attacked, Researcher Discloses Findings to Offenders Prior to Public Disclosure
A Redditor called Reckless Satoshi published a disclosure post on r/bitcoin this past Saturday and disclosed how he had found a vulnerability with routing fees and some of the Lightning Network’s custodial services. After the research was completed, he shared his findings with the offending services. Reckless Satoshi used the Lightning Network (LN) attack on six different services including Bitfinex, Muun, Okex, Lnmarkets, Southxchange, and Walletofsatoshi.
Reckless Satoshi said the attack was “cheap, but not free,” and a “simple attack.” After depositing funds into the custodial services, Reckless Satoshi used “a node that will be routing the payments between the custodial service and the receiving node.”
“If a positive net return is possible, then it is just a matter of optimizing the size of the fee collected and the transaction speed rate to see how big the damage could be,” Reckless Satoshi added. “It is easy to see how this attack must be feasible on any service with [a] free withdrawal fee.”
Reckless Satoshi also published his attack to the code repository site Github. After explaining how he placed a node in the middle, the researcher added:
This is one of the simplest attacks. This is the best LN attack that I know of. However, I am still learning. It is possible that there are others who are better equipped to conduct this type of research. It is possible that there were significant losses in the past, which are still unknown.
Lightning Network Total Value Locked at $112 Million, Up Over 100% Since the End of July
The visitors who read Reckless Satoshi’s forum thread thanked him for conducting the research and disclosing the bugs to specific custodial LN providers. “I’m glad to see that people are not hacking/exploiting the system just for malicious purposes or to make quick profit out of it,” an individual wrote in response to the disclosure. Moreover, a number of Redditors discussing Reckless Satoshi’s findings argued over what they should call the attack.
At the time of writing, the Lightning Network has seen its total value locked (TVL) slide by 9.3% during the last 24 hours. However, since July 20, 2021, the LN TVL jumped over 100% from $56 million that day to today’s (2,600+ BTC) $112 million TVL held in the Lightning Network. Much of the 9.3% TVL slide on LN is due to the recent crypto market rout on Monday morning, September 20, as the crypto economy has slid 9% in value during the last 24 hours.
What do you think about the Lightning Network attack described by the Redditor Reckless Satoshi? Comment below to let us know your thoughts about the Lightning Network attack described by Redditor Reckless Satoshi.
Image Credits: Shutterstock, Pixabay, Wiki Commons, defipulse.com
Disclaimer: This article is for informational purposes only. This article is not intended to be a solicitation or offer to buy or sell any products or services. Bitcoin.com does not provide investment, tax, legal, or accounting advice. The author and the company are not responsible for any loss or damage resulting from or in connection to the content, goods, or services discussed in this article.
Pierre Poilievre: The Bitcoiner Who Will Likely Become Canada’s Next Prime Minister
North America may be on the cusp of a crypto golden era if it ends up with two pro-crypto heads of state. This Year Could See Two North American Pro-Crypto Heads of State Long before U.S. President Donald Trump was launching memecoins, Conservative Party of Canada (CPC) leader Pierre Poilievre was buying shawarmas with bitcoin […… Read More
Rumble Makes First Bitcoin Purchase As Part of $20 Million Strategy
The adoption of a corporate treasury diversification strategy of allocating cash reserves for the purchase of bitcoin has seen Rumble make its first acquisition. Rumble Makes Its First Bitcoin Purchase Tether-backed video-sharing website Rumble has bought its first bitcoin. This was revealed in an X post by its founder and CEO… Read More
Trump’s Return to Office Fails to Ignite Bitcoin: BTC Drops 5.7% From ATH
On Monday, following Donald Trump’s inauguration and address—an event that made no mention of bitcoin or crypto assets—the cryptocurrency market experienced a pullback. Bitcoin fell 5.7% from its all-time high (ATH) of $109,356 recorded on Jan. 20, slipping to $103,092 per coin. Bitcoin Sinks Below $104K Following Trump Inauguration Silence on Crypto Contrary to predictions […… Read More