There’s a newly discovered vulnerability according to the Ethereum Foundation blog that could actually put private keys at risk. Unfortunately, it is seen in the popular Ethereum browser that is sponsored by the Ethereum Foundation itself.
According to the blog, it is classified as “high severity”. In addition to this, it impacts all of the existing versions of the browser. However, it has clarified that the Mist browser that is compatible with the Ethereum Wallet isn’t affected.
After this discovery, Mist users were urged to not use any untrusted websites and be sure to default to Ethereum Wallet when it comes to managing their funds.
What Caused the Problem?
The vulnerability came from the software framework, Electron. It was mentioned that Electron’s delay in upgrading in order to correct security issues has increased potential attacks as time passes.
After this discovery, Mist has been considering migrating to Muon that will enable frequent launch schedule.
Mist developer Everton Fraga mentioned that Mist is still in its beta mode. This only means that those users who engage using the browser have no warranty.
“The Mist Browser beta is provided on an “as is” and “as available” basis and there are no warranties of any kind, expressed or implied, including, but not limited to, warranties of merchantability or fitness of purpose.”
He also added that the security issue is considered as a “never-ending battle” when it comes to browser development. He also admitted that having a browser meant to handle private keys can be a challenging task.
How Can This Affect Ethereum?
How exactly can this affect Ethereum considering the fact that this browser has been sponsored by the Ethereum Foundation? Currently, ETH is trading at $694 hovering near its all-time high. Could this bug affect its price in the coming days?
Or perhaps, could the bug be corrected just in time by its developers in order to maintain investors’ confidence on the cryptocurrency?