https://miscreants.github.io/blog.trailofbits.com/authors/simone-monica/Recent content in Simone Monica on The Trail of Bits BlogHugoen-usWed, 13 Nov 2024 06:00:12 -0500https://miscreants.github.io/blog.trailofbits.com/2024/11/13/killing-filecoin-nodes/Wed, 13 Nov 2024 06:00:12 -0500https://miscreants.github.io/blog.trailofbits.com/2024/11/13/killing-filecoin-nodes/In January, we identified and reported a vulnerability in the Lotus and Venus clients of the Filecoin network that allowed an attacker to remotely crash a node and trigger a denial of service. This issue is caused by an incorrect validation of an index, resulting in an index out-of-range panic. The vulnerability […]https://miscreants.github.io/blog.trailofbits.com/2021/12/16/detecting-miso-and-opyns-msg-value-reuse-vulnerability-with-slither/Thu, 16 Dec 2021 13:00:49 -0500https://miscreants.github.io/blog.trailofbits.com/2021/12/16/detecting-miso-and-opyns-msg-value-reuse-vulnerability-with-slither/On August 18, 2021, samczsun reported a critical vulnerability in SushiSwap’s MISO smart contracts, which put ~350 million USD (109 thousand ETH) at risk. This issue is similar to an attack that was conducted on the Opyn codebase in August of 2020. At the time of the report, I was finishing my […]