frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

Open in hackernews

I just got banned by Immunefi for reporting a real replay attack on LayerZero V2

3•tangou•2h ago
I just got banned by Immunefi for reporting a real replay attack on LayerZero V2.

I discovered that lzReceive() allows infinite replays of valid cross-chain messages, due to the lack of guid tracking. This results in repeated token crediting — a critical flaw.

My PoC used real deployed contracts, no forged data. The vulnerability is 100% reproducible.

Instead of investigating, Immunefi rejected my report without a technical rebuttal — and banned me for "complexity poaching".

Full Story: https://medium.com/@tangouvitch/immunefi-banned-me-for-reporting-a-real-replay-attack-in-layerzero-v2-71d5ee0ff102

Do you think this is a valid bug? Was the ban justified? Should Immunefi be held accountable?

Curious to hear what the Ethereum community thinks.

Comments

lompad•2h ago
Interesting, can this directly be used to make money? Maybe by the employee reading your report?

Edit: Maybe send a report to steve from grc, he loves those kinds of stories.

Show HN: molab, a cloud-hosted marimo notebook workspace

https://marimo.io/blog/announcing-molab
1•akshayka•38s ago•0 comments

Conference Report: C++ on Sea 2025

https://www.sandordargo.com/blog/2025/07/02/cpponsea-trip-report
1•transpute•1m ago•0 comments

Playable preview of ARC-AGI-3

https://three.arcprize.org/
1•dcre•2m ago•0 comments

Cancer DNA is detectable in blood years before diagnosis

https://www.sciencenews.org/article/cancer-tumor-dna-blood-test-screening
2•bookofjoe•2m ago•1 comments

How I keep up with AI progress (and why you must too)

https://blog.nilenso.com/blog/2025/06/23/how-i-keep-up-with-ai-progress/
1•itzlambda•4m ago•0 comments

The New Surprising Number of Steam Games That Use GenAI

https://www.totallyhuman.io/blog/the-surprising-new-number-of-genai-games-on-steam
2•larsiusprime•11m ago•0 comments

Netflix reveals that one of its shows used generative AI for the first time

https://www.businessinsider.com/netflix-generative-ai-use-artificial-intelligence-2025-7
1•amrrs•14m ago•0 comments

Third patient dies from acute liver failure caused by a Sarepta gene therapy

https://www.biocentury.com/article/656520/third-death-from-a-sarepta-gene-therapy
2•randycupertino•14m ago•0 comments

Kap Lang

https://kapdemo.dhsdevelopments.com/
1•Bogdanp•16m ago•0 comments

ChatGPT Angent vs. Genspark Super Agent Side by Side

https://twitter.com/genspark_ai/status/1946005869533311030
1•sangwen•18m ago•0 comments

Using AI to make lower-carbon, faster-curing concrete

https://engineering.fb.com/2025/07/16/data-center-engineering/ai-make-lower-carbon-faster-curing-concrete/
1•mostdefinite1•23m ago•0 comments

Gradient Descent on Token Input Embeddings

https://www.lesswrong.com/posts/GK2LSzxjEejzDjzDs/gradient-descent-on-token-input-embeddings
1•kp1197•25m ago•1 comments

I built a GH Action that uses AI to manually QA your PR using Magnitude/Claude

https://github.com/ka-brian/self-testing-github-action
1•bpmcgough•27m ago•1 comments

Why Banks Are on High Alert About Stablecoins

https://www.wsj.com/finance/currencies/why-banks-are-on-high-alert-about-stablecoins-2f308aa0
3•petethomas•27m ago•1 comments

OpenAI unveils ChatGPT Agent for task automation

https://www.msn.com/en-us/money/insight/chatgpt-s-new-update-can-create-powerpoint-presentations-and-excel-spreadsheets-for-you/gm-4A64F53E00
1•pattychow•28m ago•0 comments

'Gaza: Doctors Under Attack', a film that the BBC refused to air is out now

https://zeteo.com/p/watch-now-gaza-doctors-under-attack
6•lr0•29m ago•0 comments

Transmuting mercury into gold via fusion [pdf]

https://www.marathonfusion.com/alchemy.pdf
2•frankus•29m ago•0 comments

Save your M-series Mac's energy and battery

https://eclecticlight.co/2025/07/18/save-your-m-series-macs-energy-and-battery/
2•alwillis•30m ago•1 comments

My password is same as username

1•ycombadmin•30m ago•0 comments

Language-driven cognitive architecture for AGI from scratch, alone, meet ALLA

http://dx.doi.org/10.13140/RG.2.2.24576.75523
1•darwinSir•31m ago•1 comments

The Complete Evolution of Canon EOS Autofocus Sensors

https://exclusivearchitecture.com/03-technical-articles-AFSE-01-PD-autofocus-sensor-evolution.html
2•ExAr•32m ago•1 comments

Section 174 is reversed! Mostly, that is.

https://newsletter.pragmaticengineer.com/p/the-pulse-section-174-is-reversed
5•jawns•33m ago•2 comments

Trump admin squanders nearly 800k vaccines meant for Africa

https://arstechnica.com/health/2025/07/trump-admin-squanders-nearly-800000-vaccines-meant-for-africa-report/
13•BallsInIt•33m ago•0 comments

Distillation Makes AI Models Smaller and Cheaper

https://www.quantamagazine.org/how-distillation-makes-ai-models-smaller-and-cheaper-20250718/
1•defrost•34m ago•0 comments

Knip Hits 500 Releases with v5.62.0, Improving TypeScript Config Detection and

https://socket.dev/blog/knip-hits-500-releases
1•feross•36m ago•0 comments

Teaching Men Who Will Never Leave Prison

https://www.newyorker.com/culture/the-weekend-essay/teaching-men-who-will-never-leave-prison
3•mitchbob•39m ago•1 comments

Show HN: A clean freelance rate calculator based on your work days and expenses

https://www.advanced-percentage-calculator.com/freelance
1•daniellax•40m ago•0 comments

BeePL: Correct-by-Compilation Kernel Extensions

https://arxiv.org/abs/2507.09883
1•matt_d•44m ago•0 comments

Meta says it wont sign Europe AI agreement, calling it growth stunting overreach

https://www.cnbc.com/2025/07/18/meta-europe-ai-code.html
27•rntn•44m ago•8 comments

The Israeli "art student" mystery (2002)

https://www.salon.com/2002/05/07/students/
3•georgecmu•45m ago•1 comments