ForTube
Published in

ForTube

ForTube Security Vulnerability Fix

On February 10th (UTC), a well-known blockchain security researcher @Samczsun notified the ForTube team through Tina @tzhen and assisted in fixing a security vulnerability in the smart contract of the ForTube lending platform, eliminating the security risks of the platform. After inspection, no users suffered asset losses due to the vulnerability. Thanks to @Samczsun and @tzhen for their prompt communication and active assistance in this incident.

Event Process:

The ForTube technical team responded quickly to determine the effectiveness of the vulnerability, and immediately executed a global lockdown at February 10th 00:18 (UTC), closing the contract entry and exit interface to ensure the security of user assets and data consistency.

The ForTube team conducted a comprehensive analysis of the vulnerability, identified the problem and formulated a solution. After modification, verification and comprehensive testing, it was deployed to the production environment at 05:52 (UTC), the global lockdown was lifted at 05:58 (UTC), and normal services were restored.

Vulnerability Fix:

Impacts:

Subsequent Work:

Finally, thanks again to Sam and Tina for their contributions in this incident, we will distribute bounties to them according to our bug bounty program https://for.tube/bounty. ForTube sincerely hopes that blockchain security researchers and the white hat community can work closely with the DeFi industry towards a safer and more healthy ecosystem.

Be sure to follow us on social media for more updates and mining campaigns:

▲Announcement channel: https://t.me/the_force_announcement
▲Medium: https://fortube.medium.com/
▲ForTube website: https://www.for.tube/home
▲Twitter: https://twitter.com/ForTubeFi
▲Github: https://github.com/thefortube
▲Knowledge Library of ForTube platform: https://docs.for.tube/